Bleeping Computer

LofyGang hackers built a credential-stealing enterprise on Discord, NPM

The 'LofyGang' threat actors have created a credential-stealing enterprise by distributing 200 malicious packages and fake hacking tools on code hosting platforms, such as NPM and GitHub. Researchers ...
WinBuzzer

GitHub Tool Turns Files Into Video using YouTube as Storage

A GitHub project has enabled encoding files as lossless video for YouTube storage, gaining 367 stars despite Terms of Service violations and account termination risk.
ZDNet

GitHub suspends member over 'mass-assignment' hack

A GitHub member was briefly suspended on Sunday after he exploited a vulnerability in the code repository's systems without first telling GitHub he was going to do so. Egor Homakov's hack caused ...
Infosecurity-magazine.com

LofyGang Group Linked to Recent Software Supply Chain Attacks

A number of notable software supply chain cyber incidents have been linked to ‘LofyGang,’ an attack group that has been operating for over a year, according to a new analysis by Checkmarx. The ...