Information security
fromThe Hacker News
3 hours agoMegalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
Megalodon used forged CI workflow commits to exfiltrate CI secrets, cloud credentials, tokens, keys, and configuration data from thousands of GitHub repositories within hours.