GitHub rushed to fix a critical vulnerability in less than six hours

Yazı boyutu

GitHub employees fixed a critical remote code execution vulnerability in less than six hours last month. Wiz Research used AI models to uncover a vulnerability in GitHub's internal git infrastructure that could have allowed attackers to access millions of public and private code repositories. "Our security team immediately began validating the bug bounty report. Within […]

The Verge sitesinde devam et

Bu haber ilk olarak şurada yayınlandı: The Verge.

İlgili Haberler

Gelişiyor·32 dk önce

Karamo Brown Launches Wellness App Kē with AI Chatbot Clone

Karamo Brown has launched Kē, a wellness app offering personalized fitness and nutrition plans, guided meditations, and a community section. A key feature is "AI Karamo," a digital clone of Brown powered by Delphi, which users can interact with for real-time advice.

TechCrunch

Gelişiyor·1 sa önce

The 'Slow Tech' Movement: Why People Are Embracing Obsolete Gadgets

A "slow tech" movement is emerging as people, including tech pioneers like Tony Fadell, seek to reduce digital fatigue. Consumers are embracing older, simpler gadgets like the iPod Shuffle and flip phones, valuing "friction" as a way to create boundaries and regain control over their time and attention.

TechCrunch

Gelişiyor·3 sa önce

Microsoft Detects New Crypto-Stealing Malware Spreading Via USB

Microsoft has identified a new self-propagating malware, dubbed Crypto Clipper, that spreads via USB drives to steal cryptocurrency credentials. It monitors clipboards for wallet addresses and seed phrases, captures screenshots, and sends data through Tor to attacker-controlled servers, also diverting payments to attacker wallets.

Ars Technica

Gelişiyor·3 sa önce

India's Telegram Ban Sparks Surge in VPN and Alternative App Downloads

Following India's temporary ban on Telegram due to exam fraud concerns, users flocked to VPNs and alternative messaging apps. VPN downloads surged by 49% on June 18, with Proton VPN and Turbo VPN seeing significant increases. Signal and Viber downloads also rose, while Telegram's daily active users increased on the day of the ban.

TechCrunch

Gelişiyor·7 sa önce

Google's Android Developer Verification System Rolls Out This Year

Google is launching its developer verification system for Android apps on September 30, starting in Brazil, Indonesia, Singapore, and Thailand. The system aims to combat malware by verifying developer identities, impacting app sideloading and requiring participation from third-party app stores.

Ars Technica

Gelişiyor·7 sa önce

Apple Patches High-Severity Vulnerability in Beats Studio Buds

Apple has updated its Beats Studio Buds to fix CVE-2025-20701, a critical vulnerability allowing nearby hackers to eavesdrop via Bluetooth. The patch is delivered automatically.

Ars Technica