GoSerpent backdoor spent five years harvesting Southeast Asian government police files, biometric databases, and diplomatic ...
Grok CLI unauthorized data uploads expose SSH keys and Git repositories. Researchers used an MITM proxy to catch xAI ...
Grok Build uploaded full Git repositories to xAI cloud storage before xAI disabled the behavior and Musk pledged to delete ...
SpaceXAI's agentic coding CLI, Grok Build, sent tracked repositories and their full histories to cloud storage before a ...
GitHub Copilot security review launched in the desktop app July 14, giving all subscribers — Free tier included — AI-driven ...
SpaceXAI’s Grok Build AI coding tool was spotted uploading users’ entire codebases to Google Cloud before it was reported, ...
A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security projects to ...
The researcher who exposed Grok Build uploading users' entire repositories to cloud storage says the transfers have stopped ...
xAI's Grok Build coding CLI was uploading entire Git repositories, full commit history and all, to a Google Cloud Storage bucket run by xAI, not just the files a coding task needed. A researcher ...
A PNG hiding a prompt injection could steal your repo's secrets, researchers demonstrate. The technique, dubbed 'Ghostcommit, ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and codebases. A single click on the wrong repository could have put a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results