The Hacker News

UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.
GeekWire

As it awaits the close of the Microsoft deal, GitHub strikes partnership deal with Google Cloud

GitHub tried to put worries about its independence under Microsoft to rest Thursday, announcing a partnership with Google Cloud that will make it easier for developers to use a new software ...
SD Times

SD Times news digest: GitHub + Google Cloud Build, Dynatrace’s support for GCP, and F# 4.5

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.
Fast Company

Google wanted to buy GitHub too

Microsoft scooped up the popular code repository earlier this month for $7.5 billion. But they weren’t the only software giant interested in GitHub. Speaking at a Fortune magazine event yesterday, ...
SD Times

Apollo Server 1.0, GitHub’s Internet Bug Bounty donation, and the…

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...