News

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...
CSO Online12d
Prompt injection flaws in GitLab Duo highlights risks in AI assistants
Researchers managed to trick GitLab’s AI-powered coding assistant to display malicious content to users and leak private ...
Bleeping Computer3y
HTML attachments remain popular among phishing actors in 2022
For example, in November, we reported that threat actors used morse code in their HTML attachment to obfuscate a phishing form that the HTML attachment would display when opened. Source code HTML ...
Ars Technica3y
Viewing website HTML code is not illegal or “hacking,” prof. tells Missouri gov.
This is all happening despite the fact that the state government made teachers' Social Security numbers available in an unencrypted form in the HTML source code of a publicly accessible website.
TechCrunch2y
Protestware on the rise: Why developers are sabotaging their own code
A developer can, on a whim, change their mind and do whatever they want with their open source code that, most of the time anyway, comes “as is” without any warranty. Or, as seen by a growing ...
The New York Times2y
Twitter Says Parts of Its Source Code Were Leaked Online
By Ryan Mac and Kate Conger Parts of Twitter’s source code, the underlying computer code on which the social network runs, were leaked online, according to a legal filing, a rare and major ...