Headlines

New GitHub Zero-Day Exposed Developer Tokens to Attackers

A single click on the wrong repository could have put a developer’s GitHub access at risk. Security researcher Ammar Askar disclosed a zero-day vulnerability in github.dev, GitHub’s browser-based VSCode environment, that could expose GitHub OAuth tokens through a flaw in VSCode webviews. Those tokens could give attackers access to repositories and organizational code available to…

Read More

Etherfi and Plume Launch $100M RWA Vault Backed by Blackrock and Fidelity – Bitcoin News

Key Takeaways Etherfi and Plume launched Liquid RWA with a $25M cap from a planned $100M rollout. The vault offers exposure to Blackrock, Fidelity, and FalconX credit strategies. Plume’s regulated infrastructure could expand RWA access across Etherfi’s $6B platform. Plume Powers New Etherfi Vault Connecting DeFi Users to Institutional Yield Etherfi and Plume are bringing…

Read More

Former cyber executive turned whistleblower accuses IBM of covering up several data breaches

A former IBM cybersecurity executive accused the company of getting hacked three times in the previous decade by foreign governments and then covering up the breaches.  In a lawsuit unsealed this week but filed in 2020, William Barlow, who was IBM’s vice president of threat intelligence until August 2019, said IBM concluded Chinese hackers breached…

Read More