The Verge

Microsoft is moving GitHub over to Azure servers

It’s the first major change to GitHub since losing its CEO. It’s the first major change to GitHub since losing its CEO. is a senior editor and author of Notepad, who has been covering all things ...
Bleeping Computer

Red Hat confirms security incident after hackers breach GitLab instance

Correction: After publishing, Red Hat confirmed that it was a breach of one of its GitLab instances, and not GitHub. Title and story updated. An extortion group calling itself the Crimson Collective ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and publishes those secrets on ...
Bleeping Computer

Salesloft: March GitHub repo breach led to Salesforce data theft attacks

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely ...
The Hacker News

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations

Salesloft on Tuesday announced that it's taking Drift temporarily offline "in the very near future," as multiple companies have been ensnared in a far-reaching supply chain attack spree targeting the ...
The Hacker News

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

The North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ...
The Verge

GitHub just got less independent at Microsoft after CEO resignation

GitHub CEO Thomas Dohmke has resigned, and GitHub is moving even closer into Microsoft’s CoreAI team. GitHub CEO Thomas Dohmke has resigned, and GitHub is moving even closer into Microsoft’s CoreAI ...
Morningstar

StackGen Launches Autonomous Infrastructure Platform, Unveiling Next-Gen AI Agents to Build and Manage Infrastructure

SAN FRANCISCO, July 29, 2025 /PRNewswire/ -- StackGen, the pioneer in autonomous infrastructure technology, today announced the launch of its industry-first Autonomous Infrastructure Platform—an ...
GitHub

GitLab Integration fails using oauth token

When attempting to complete GitLab integration for static location (https://backstage.io/docs/integrations/gitlab/locations/) I am trying to use an Oauth token which ...
GitHub

Enable OAuth device authorization for GitLab

GitLab supports supports the OAuth 2.0 device authorization grant flow since GitLab 17.2: https://about.gitlab.com/releases/2024/07/18/gitlab-17-2-released/#oauth-20 ...
blockchain

GitHub Enhances Security with PKCE Support for OAuth and GitHub Apps

GitHub has introduced PKCE support for OAuth and GitHub App authentication, enhancing security by protecting authorization codes. The implementation follows OAuth 2.0 standard (RFC 7636). GitHub has ...