Freelance dev shop Toptal caught serving malware after GitHub account break-in • The Register Forums

User topics

Article topics

Log in Sign up

Other stories you might like

Microsoft kills 9.9-rated ASP.NET Core bug – 'our highest ever' score

Flaw in Kestrel web server allowed request smuggling, impact depends on hosting setup and application code

Security 16 Oct 2025 | 3

GitHub moves to tighten npm security amid phishing, malware plague

Hundreds of compromised packages pulled as registry shifts to 2FA and trusted publishing

Security 23 Sep 2025 | 7

Suspected Salt Typhoon snoops lurking in European telco's network

It's Typhoon season…year round

Cybersecurity Month 20 Oct 2025 | 2

Vulnerability scores, huh, what are they good for? Almost nothing

CVE and CVSS systems suffer from misaligned incentives and inconsistency

Security 16 Oct 2025 | 5

'Highly sophisticated' government goons hacked F5, stole source code and undisclosed bug details

And they swiped a limited amount of customers' config data

Cybersecurity Month 15 Oct 2025 | 25

Leak suggests US government is fibbing over FEMA security failings

Infosec in brief Plus, PAN under attack, IT whistleblowers get a payout, and China kills online scammers

Cybersecurity Month 6 Oct 2025 | 27

Socket will block it with free malicious package firewall

"sfw" stands for Socket Firewall, but perhaps also "safe for work."

Devops 30 Sep 2025 | 10

China blames US for cyber break-in, claims America is world's biggest bit burglar

'US is … the greatest source of chaos in cyberspace'

Cybersecurity Month 20 Oct 2025 | 35

Frightful Patch Tuesday gives admins a scare with 175+ Microsoft CVEs, 3 under attack

Plus: Adobe, SAP, Ivanti offer treats, not tricks

Cybersecurity Month 14 Oct 2025 | 21

Android 'Pixnapping' attack can capture app data like 2FA codes

GPU-based timing attack inspired by decade-old iframe technique

Cybersecurity Month 13 Oct 2025 | 8

CISA exec blames nation-state hackers and Democrats for putting America's critical systems at risk

Federal agencies have seven days to patch F5 products

Cybersecurity Month 15 Oct 2025 | 19

Google declares AI bug hunting season open, sets a $30K max reward

Jailbreaks, direct prompt injection not allowed

Cybersecurity Month 7 Oct 2025 | 1

The Register Biting the hand that feeds IT

About Us

Our Websites

Your Privacy

Situation Publishing

Copyright. All rights reserved © 1998–2025