- Large enterprises scramble after supply-chain attack spills their secrets | tj-actions/changed-files corrupted to run credential-stealing memory scraper https://arstechnica.com/information-technology/2025/03/supply-chain-attack-exposing-credentials-affects-23k-users-of-tj-actions/ 2 comments technology
- Large enterprises scramble after supply-chain attack spills their secrets | tj-actions/changed-files, corrupted to run credential-stealing memory scraper. https://arstechnica.com/information-technology/2025/03/supply-chain-attack-exposing-credentials-affects-23k-users-of-tj-actions/ 5 comments technews
Linked pages
- What we know about the xz Utils backdoor that almost infected the world | Ars Technica https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/ 620 comments
- Harden-Runner detection: tj-actions/changed-files action is compromised - StepSecurity https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised 337 comments
- Semgrep | 🚨 Popular GitHub Action tj-actions/changed-files is compromised https://semgrep.dev/blog/2025/popular-github-action-tj-actionschanged-files-is-compromised/ 205 comments
- Backdoor found in widely used Linux utility breaks encrypted SSH connections | Ars Technica https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/ 72 comments
- PyPI halted new users and projects while it fended off supply-chain attack | Ars Technica https://arstechnica.com/security/2024/03/pypi-halted-new-users-and-projects-while-it-fended-off-supply-chain-attack/ 46 comments
- Go Module Mirror served backdoor to devs for 3+ years - Ars Technica https://arstechnica.com/security/2025/02/backdoored-package-in-go-mirror-site-went-unnoticed-for-3-years/ 44 comments
- GitHub Action tj-actions/changed-files supply chain attack | Wiz Blog https://www.wiz.io/blog/github-action-tj-actions-changed-files-supply-chain-attack-cve-2025-30066 1 comment
Related searches:
Search whole site: site:arstechnica.com
Search title: Large enterprises scramble after supply-chain attack spills their secrets - Ars Technica
See how to search.