Open-source software used by over 23,000 organisations was compromised by attackers who accessed a maintainer account, injecting credential-stealing code. The corrupted package, part of tj-actions, was able to modify source code and potentially access secret variables. The breach exposed some organisations’ sensitive credentials in freely accessible logs, underlining the need for stringent security protocols in open-source environments.
Cybersecurity in healthcare: getting the basics right as bigger threats loom
2024 was the worst year for healthcare records breaches, marking a 9.96% increase from 2023. With 68% of medical devices predicted to be connected by
