A fake CAPTCHA is all it takes. Interlock ransomware is back—now pushing a stealthy PHP RAT via “FileFix,” a spin on ClickFix ...

Experts have revealed several critical vulnerabilities in GitHub Actions workflows which could pose serious risks to some major open source projects.

Hardcoded secrets in GitHub Actions increase security risk and surface area for breaches. This blog walks through how to replace them with Doppler’s doppler run command, enabling dynamic, secure ...

Deleted files within public GitHub repositories could still be exposing secrets like API keys, tokens, and credentials, if threat actors knew where and how to look.

Compromise GitHub Actions secrets of workflows using the GitHub Actions Cache within a repo that uses CodeQL. This is the story of how we uncovered an exposed secret leading to a race condition, a ...

CVE-2025-30066 supply chain attack compromised tj-actions on March 14, 2025, exposing 218 repositories and leaking credentials.

GitHub has removed a poisoned Action used in 23,000+ repos after it exfiltrated CI secrets, prompting concerns over supply chain security.

The compromise of GitHub Action tj-actions/changed-files has impacted only a small percentage of the 23,000 projects using it, with it estimated that only 218 repositories exposed secrets due to ...

A supply chain attack on the widely used 'tj-actions/changed-files' GitHub Action, used by 23,000 repositories, potentially allowed threat actors to steal CI/CD ...

Large enterprises scramble after supply-chain attack spills their secrets tj-actions/changed-files corrupted to run credential-stealing memory scraper.