#malicious-code

[ follow ]
Theregister
2 months ago
Artificial intelligence

AI bots hallucinate software packages and devs download them

AI-generated software packages were incorporated by businesses, potentially leading to the propagation of malicious code.
Hallucinated code by AI turned into a real package ended up being downloaded thousands of times, highlighting the risk of AI-generated dependencies. [ more ]
Developer Tech News
3 months ago
Information security

GitHub suffers from over 100K infected repos

Developers facing security threat from infected GitHub repositories
Malicious repo confusion attacks impacting developers [ more ]
Ars Technica
4 months ago
Privacy professionals

Actively exploited 0-days in Ivanti VPN are letting hackers backdoor networks

Unknown threat actors are actively exploiting two zero-day vulnerabilities in Ivanti Connect Secure, a widely used VPN appliance.
The vulnerabilities allow attackers to bypass two-factor authentication and execute malicious code inside networks. [ more ]
[ Load more ]