Loading...

Home > source-code-leak

source-code-leak

Screenshot of a cybercrime forum post advertising the alleged sale of Dynatrace internal GitHub organization data. The listing claims access to 246 repositories obtained through a developer personal access token and references infrastructure topology, CI/CD systems, Kubernetes management, cloud infrastructure, employee information, and deployment tooling. BreachNews redacted contact information, sample links, and other sensitive details.

Threat Actor Claims Sale of Dynatrace Internal GitHub Repositories

A cybercrime forum listing claims to offer hundreds of internal Dynatrace repositories containing infrastructure, CI/CD, and operational intelligence.

Screenshot of a forum post allegedly advertising leaked Paidwork source code, including archived project directories and claims of exposed API keys, database credentials, and internal certificates.

Paidwork Source Code Allegedly Leaked With API Keys and Internal Credentials

Source code and internal credentials for Paidwork, including API keys and private certificates, were allegedly leaked on a forum, potentially...

Dark-themed illustration showing overlapping GitHub, npm, and Visual Studio Code interfaces with source code windows and dependency-style connections representing modern software supply chain attacks targeting developer ecosystems.

The TeamPCP Worm May Have Created a Much Bigger Supply Chain Problem

The TeamPCP-linked GitHub breach, originating from a malicious Visual Studio Code extension, reveals an evolving software supply chain threat leveraging...

Screenshot of a cybercrime forum post advertising alleged GitHub internal source code and private repositories for sale by a user claiming affiliation with TeamPCP.

Alleged TeamPCP Sale of GitHub Internal Source Code and Private Repositories

GitHub confirmed unauthorized access to about 3,800 internal repositories through a malicious Nx Console extension linked to the Mini Shai-Hulud...

Grafana Confirms GitHub Codebase Theft Following Credential Compromise and Extortion Attempt

Grafana Labs confirmed credential compromise allowed unauthorized access to its GitHub, resulting in codebase theft and extortion attempt by the...

OpenAI Confirms Internal Breach Linked to Mini Shai-Hulud Supply-Chain Attack

OpenAI confirmed that two employee devices were compromised in the Mini Shai-Hulud supply-chain attack, exposing some internal source code and...

Screenshot of a forum post allegedly published by TeamPCP offering internal Mistral AI repositories and source code for sale, including references to AI infrastructure and enterprise development projects.

TeamPCP Claims Sale of Mistral AI Internal Repositories and Source Code

TeamPCP claims to have stolen and is selling internal repositories and source code from French AI company Mistral AI, highlighting...

A close-up angled monitor displaying JavaScript dependency files, npm audit logs, and developer tooling interfaces with subtle red vulnerability warnings highlighted across the screen, creating a realistic software supply chain security atmosphere in a dark minimal workspace.

Mini Shai-Hulud Malware Abuses Trusted CI Pipelines in Expanding Supply-Chain Attack

The Mini Shai-Hulud malware campaign exploits trusted npm and PyPI CI/CD pipelines to propagate malicious packages across projects like TanStack...

Page 1 of 2 1 2 Next

Newsletter signup

Get the latest data breach and security news.

Email

Please wait...

Thank you for signing up!