cyber·news

HIGH

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

The Hacker News supply-chainbreachesmalware +81 18d ago

INFO

ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax

rss:cisa-advisories 24d ago

INFO

Fuji Electric Tellus

rss:cisa-advisories 24d ago

INFO

ABB AC500 V3 Multiple Vulnerabilities

rss:cisa-advisories 24d ago

INFO

Subnet Solutions PowerSYSTEM Center

rss:cisa-advisories 24d ago

INFO

ABB Automation Builder Gateway for Windows

rss:cisa-advisories 24d ago

INFO

ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities

rss:cisa-advisories 24d ago

INFO

Siemens Siemens ROS#

rss:cisa-advisories 22d ago

INFO

Siemens gWAP

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Simcenter Femap

rss:cisa-advisories 22d ago

INFO

Universal Robots Polyscope 5

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Teamcenter

rss:cisa-advisories 22d ago

INFO

Siemens Solid Edge

rss:cisa-advisories 22d ago

INFO

Siemens SENTRON 7KT PAC1261 Data Manager

rss:cisa-advisories 22d ago

INFO

Siemens Opcenter RDnL

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Industrial Devices

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC S7 PLC Web Server

rss:cisa-advisories 22d ago

INFO

Siemens SIPROTEC 5

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC

rss:cisa-advisories 22d ago

INFO

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

The Hacker News 20d ago

INFO

Kieback & Peter DDC Building Controllers

rss:cisa-advisories 17d ago

INFO

Siemens RUGGEDCOM APE1808 Devices

rss:cisa-advisories 17d ago

INFO

ABB CoreSense HM and CoreSense M10

rss:cisa-advisories 17d ago

INFO

ScadaBR

rss:cisa-advisories 17d ago

INFO

ZKTeco CCTV Cameras

rss:cisa-advisories 17d ago

INFO

CISA Exposes Secrets, Credentials in 'Private' Repo

rss:darkreading 17d ago

INFO

GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories

The Hacker News 17d ago

INFO

GitHub investigates internal repositories breach claimed by TeamPCP

BleepingComputer 17d ago

INFO

GitHub confirms breach of 3,800 repos via malicious VSCode extension

BleepingComputer 16d ago

INFO

Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)

rss:cisa-advisories 16d ago

INFO

Senator presses CISA for answers about alleged GitHub repository leak

The Record 16d ago

INFO

GitHub confirms being hacked by TeamPCP, says customer data unaffected

The Record 16d ago

INFO

Grafana breach caused by missed token rotation after TanStack attack

BleepingComputer 16d ago

INFO

GitHub Confirms Breach, 4K Internal Repos Stolen

rss:darkreading 16d ago

INFO

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

The Hacker News 16d ago

INFO

GitHub links repo breach to TanStack npm supply-chain attack

BleepingComputer 16d ago

INFO

ABB Terra AC Wallbox

rss:cisa-advisories 15d ago

INFO

ABB B&R Automation Studio

rss:cisa-advisories 15d ago

INFO

ABB B&R Automation Runtime

rss:cisa-advisories 15d ago

INFO

ABB B&R PCs

rss:cisa-advisories 15d ago

INFO

Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack

SecurityWeek 14d ago

INFO

Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows

The Hacker News 14d ago

INFO

CISA Security Leak

rss:schneier 14d ago

INFO

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Krebs 14d ago

INFO

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

The Hacker News 13d ago

INFO

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks

The Hacker News 13d ago

INFO

Laravel Lang packages hijacked to deploy credential-stealing malware

BleepingComputer 13d ago

INFO

Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack

SecurityWeek 12d ago

INFO

ABB Terra AC

rss:cisa-advisories 10d ago

INFO

ABB LVS MConfig

rss:cisa-advisories 10d ago

INFO

ABB Ability Camera Connect

rss:cisa-advisories 10d ago

INFO

Eppendorf BioFlo 320

rss:cisa-advisories 10d ago

INFO

ABB AbilityTM Zenon Remote Transport Vulnerability

rss:cisa-advisories 10d ago

INFO

ABB AC500 V2

rss:cisa-advisories 10d ago

INFO

ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)

rss:cisa-advisories 10d ago

INFO

Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

rss:darkreading 10d ago

INFO

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

The Hacker News 9d ago

INFO

ABB EIBPORT

rss:cisa-advisories 8d ago

INFO

Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter

rss:cisa-advisories 8d ago

INFO

ABB Busch-Welcome 2 Wire Door Opener Actuator

rss:cisa-advisories 8d ago

INFO

Fourth Frontier Frontier X Mobile Application, Frontier X2

rss:cisa-advisories 8d ago

INFO

CP Plus 8 Ch. Network Video Recorder

rss:cisa-advisories 8d ago

INFO

XCharge C6

rss:cisa-advisories 8d ago

INFO

KMW CCTV Security Cameras

rss:cisa-advisories 8d ago

INFO

MacGregor Voyage Data Recorder (VDR) G4e

rss:cisa-advisories 8d ago

INFO

Supply Chain Compromises Impact Nx Console and GitHub Repositories

rss:cisa-advisories 8d ago

INFO

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

The Hacker News 8d ago

INFO

Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more

The Record 7d ago

INFO

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

The Hacker News 4d ago

INFO

Red Hat removes tainted packages after software pipeline compromise

The Record 3d ago

INFO

VS Code zero-day lets hackers steal GitHub tokens in one click

BleepingComputer 3d ago

INFO

NAVTOR NavBox

rss:cisa-advisories 1d ago

INFO

Hitachi Energy MACH HiDraw

rss:cisa-advisories 1d ago

INFO

Hitachi Energy ITT600 Explorer

rss:cisa-advisories 1d ago

INFO

B&R PPT30 Operating System

rss:cisa-advisories 1d ago

INFO

Hitachi Energy RTU500

rss:cisa-advisories 1d ago

INFO

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

The Hacker News 1d ago

HIGH

CVE-2026-44825 (CVSS 8.1) — Hardcoded credentials in the Basic Authentication setup tool (bin/solr auth enable) in Apache Solr v...

NVD CVE-2026-44825 4d ago

HIGH

CVE-2026-10243 (CVSS 7.3) — A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an...

NVD CVE-2026-10243 4d ago

HIGH

CVE-2026-10236 (CVSS 7.3) — A vulnerability has been found in SourceCodester Water Billing Management System 1.0. This issue aff...

NVD CVE-2026-10236 4d ago

INFO

Gemini Voice Assistant Hijacked via Messaging Notifications

SecurityWeek breachesransomwaresupply-chain +18 1d ago

INFO

VoidStealer Malware Darts Past Google Chrome's Encryption

rss:darkreading 30d ago

INFO

Android Adds Intrusion Logging for Sophisticated Spyware Forensics

The Hacker News 24d ago

INFO

A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens

rss:googleprojectzero 24d ago

INFO

Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI

SecurityWeek 15d ago

INFO

Google accidentally exposed details of unfixed Chromium flaw

BleepingComputer 15d ago

INFO

Google API Keys Remain Active After Deletion

rss:darkreading 15d ago

INFO

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

The Hacker News 9d ago

INFO

Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks

SecurityWeek 8d ago

INFO

US charges Google security engineer with Polymarket insider trading

BleepingComputer 7d ago

INFO

Google Chrome adds session cookie theft protection for all users

BleepingComputer 7d ago

INFO

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

The Hacker News 4d ago

INFO

Google fixes one actively exploited Android zero-day, 124 flaws

BleepingComputer 3d ago

INFO

Google adds Android protection against AI deepfake scam calls

BleepingComputer 2d ago

INFO

Malicious Notifications Could Trick Google Gemini Users

rss:darkreading 2d ago

INFO

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT

The Hacker News 2d ago

INFO

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android

The Hacker News 2d ago

INFO

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS

The Hacker News 1d ago

INFO

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads

The Hacker News 1d ago

HIGH

CVE-2026-35563 (CVSS 8.5) — It was identified that the LDAP client implementation in version 2.1.7 does not verify if the server...

NVD CVE-2026-35563 4d ago

HIGH

CVE-2026-10227 (CVSS 7.3) — A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013...

NVD CVE-2026-10227 5d ago

HIGH

CVE-2026-10226 (CVSS 7.3) — A flaw has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9...

NVD CVE-2026-10226 5d ago

HIGH

CVE-2026-10225 (CVSS 7.3) — A vulnerability was detected in raisulislamg4 student_management_system_by_php up to 310d950e09013d5...

NVD CVE-2026-10225 5d ago

HIGH

CVE-2026-10221 (CVSS 7.3) — A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerabi...

NVD CVE-2026-10221 5d ago

HIGH

CVE-2026-10220 (CVSS 7.3) — A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the functio...

NVD CVE-2026-10220 5d ago

HIGH

CVE-2026-10219 (CVSS 7.3) — A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridg...

NVD CVE-2026-10219 5d ago

HIGH

CVE-2026-10214 (CVSS 7.3) — A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the fun...

NVD CVE-2026-10214 5d ago

HIGH

CVE-2026-10208 (CVSS 7.3) — A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the fun...

NVD CVE-2026-10208 5d ago

HIGH

CVE-2026-10206 (CVSS 8.8) — A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of...

NVD CVE-2026-10206 5d ago

CRITICAL

CVE-2024-21182: Oracle WebLogic Server Unspecified Vulnerability (Oracle WebLogic Server)

CISA KEV CVE-2024-21182actively-exploited +2 5d ago

INFO

Oracle WebLogic Vulnerability Exploited in the Wild

SecurityWeek 3d ago

INFO

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

The Hacker News 3d ago

HIGH

CVE-2026-10192 (CVSS 8.8) — A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function set_...

NVD CVE-2026-10192 5d ago

HIGH

CVE-2026-10191 (CVSS 8.8) — A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function cgiWifiMacFilter...

NVD CVE-2026-10191 5d ago

HIGH

CVE-2026-10189 (CVSS 8.8) — A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function c...

NVD CVE-2026-10189 5d ago

HIGH

CVE-2026-10188 (CVSS 8.8) — A flaw has been found in Tenda W12 3.0.0.7(4763). This affects the function cgistaKickOff of the fil...

NVD CVE-2026-10188 5d ago

CRITICAL

CVE-2026-10187 (CVSS 9.8) — A vulnerability was detected in Totolink N300RH 6.1c.1353_B20190305. Affected by this issue is the f...

NVD CVE-2026-10187 5d ago

HIGH

CVE-2026-10186 (CVSS 7.3) — A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. A...

NVD CVE-2026-10186 5d ago

HIGH

CVE-2026-10185 (CVSS 7.3) — A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Af...

NVD CVE-2026-10185 5d ago

HIGH

CVE-2026-10184 (CVSS 7.3) — A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1....

NVD CVE-2026-10184 5d ago

HIGH

CVE-2026-10183 (CVSS 8.8) — A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSet...

NVD CVE-2026-10183 5d ago

HIGH

CVE-2026-49490 (CVSS 8.1) — OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling tha...

NVD CVE-2026-49490 5d ago

HIGH

CVE-2026-49489 (CVSS 8.5) — OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirection parameter of th...

NVD CVE-2026-49489 5d ago

HIGH

CVE-2026-10181 (CVSS 8.8) — A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formS...

NVD CVE-2026-10181 5d ago

INFO

Dutch Police Dismantle Massive 17-Million-Device Botnet

SecurityWeek breachesransomwaresupply-chain +2 4d ago

INFO

Dutch govt disrupts malware botnet with 17 million infected devices

BleepingComputer 7d ago

INFO

Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices

The Hacker News 5d ago

HIGH

CVE-2026-10179 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEnc...

NVD CVE-2026-10179 5d ago

HIGH

CVE-2026-10178 (CVSS 7.3) — A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unkn...

NVD CVE-2026-10178 5d ago

HIGH

CVE-2026-10167 (CVSS 7.3) — A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e...

NVD CVE-2026-10167 6d ago

HIGH

CVE-2026-10165 (CVSS 8.8) — A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWa...

NVD CVE-2026-10165 6d ago

HIGH

CVE-2026-10164 (CVSS 8.8) — A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the fi...

NVD CVE-2026-10164 6d ago

HIGH

CVE-2026-10163 (CVSS 8.8) — A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAcco...

NVD CVE-2026-10163 6d ago

HIGH

CVE-2026-10162 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSe...

NVD CVE-2026-10162 6d ago

HIGH

CVE-2026-10161 (CVSS 8.8) — A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStat...

NVD CVE-2026-10161 6d ago

HIGH

CVE-2026-10160 (CVSS 8.8) — A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is...

NVD CVE-2026-10160 6d ago

HIGH

CVE-2026-10159 (CVSS 8.8) — A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the...

NVD CVE-2026-10159 6d ago

HIGH

CVE-2026-10158 (CVSS 8.8) — A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPor...

NVD CVE-2026-10158 6d ago

HIGH

CVE-2026-10157 (CVSS 7.3) — A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file ...

NVD CVE-2026-10157 6d ago

HIGH

CVE-2026-10126 (CVSS 8.8) — A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function...

NVD CVE-2026-10126 6d ago

HIGH

CVE-2026-10125 (CVSS 8.8) — A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the funct...

NVD CVE-2026-10125 6d ago

HIGH

CVE-2026-10124 (CVSS 8.8) — A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_...

NVD CVE-2026-10124 6d ago

HIGH

CVE-2026-10123 (CVSS 8.8) — A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFil...

NVD CVE-2026-10123 6d ago

HIGH

CVE-2026-10122 (CVSS 8.8) — A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProt...

NVD CVE-2026-10122 6d ago

HIGH

CVE-2026-10121 (CVSS 8.8) — A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUr...

NVD CVE-2026-10121 6d ago

HIGH

CVE-2018-25426 (CVSS 7.5) — WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the applicatio...

NVD CVE-2018-25426 6d ago

HIGH

CVE-2018-25425 (CVSS 8.2) — Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execu...

NVD CVE-2018-25425 6d ago

HIGH

CVE-2018-25424 (CVSS 8.2) — Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated ...

NVD CVE-2018-25424 6d ago

Prev Page 7 / 39 Next

HIGH The Hacker News Tue, 19 May 2026 05:28:06 UTC

https://thehackernews.com/2026/05/github-actions-supply-chain-attack.html

TL;DR AI

Here is a concise summary of the article in 3 sentences: A vulnerability in GitHub Actions workflow, actions-cool/issues-helper, has allowed threat actors to redirect popular GitHub Actions to an imposter commit that steals sensitive credentials and exfiltrates them to an attacker-controlled server. The imposter commit, which contains malicious code that downloads and exfiltrates credentials, has been compromised in two separate GitHub Actions, and 15 additional tags have been targeted, including "actions-cool/maintain-one-comment". The compromised actions have been disabled due to a violation of GitHub's terms of service, and the attackers are likely linked to the Mini Shai-Hulud campaign targeting npm packages from the @antv ecosystem.

supply-chainbreachesmalware

Read full story ↗