Recent GitHub supply chain attack traced to leaked SpotBugs token

Published on April 3, 2025

A cascading supply chain attack on GitHub that targeted Coinbase in March has now been traced back to a single token stolen from a SpotBugs workflow, which allowed a threat actor to compromise multiple GitHub projects. [...]

Continue reading on website
Other news

Intel’s Chief People Officer Is Leaving For A Job At Caterpillar

April 3, 2025
Intel CEO Lip-Bu Tan told employees in a Thursday email that the company’s chief people officer, Christy Pambianchi, is leaving to join Caterpillar, and her successor will be named before May.

Oracle privately confirms Cloud breach to customers

April 3, 2025
Oracle has finally acknowledged to some customers that attackers have stolen old client credentials after breaching a "legacy environment" last used in 2017. [...]