Health

A ‘Make America Healthy Again’ Report Goes Easy on the Food Industry

September 9, 2025 3 min read A ‘Make America Healthy Again’ Report Goes Easy on the Food Industry A childhood health report led by RFK, Jr., links poor diet, chemicals, inactivity and “overmedicalization” to worsening U.S. pediatric health By Dan Vergano edited by Jeanna Bryner Chip Somodevilla/Getty Images Criticisms of the food industry have gone...

Science & Technology

JWST Sees Hints of an Atmosphere on a Potentially Habitable Exoplanet

If we’ll ever find life outside our solar system, it will not be an instant discovery. Save for the slim possibility of an intelligent civilization beaming a message in our direction, evidence for aliens will most likely come from scrutinizing nearby rocky worlds by using giant telescopes to study their atmospheres for gases that could...

Science

Salmon’s secret superfood is smaller than a grain of salt

In northern California, salmon are more than just fish — they’re a cornerstone of tribal traditions, a driver of tourism and a sign of healthy rivers. So it may not come as a surprise that NAU and University of California Berkeley scientists working along the region’s Eel River have discovered a micro-scale nutrient factory that...

Technology

GitHub supply chain attack sees thousands of tokens and secrets stolen in GhostAction campaign

americalatinanews.com11 hours ago04 mins

GhostAction attack stole 3,325 secrets from 327 GitHub accounts
GitGuardian helped shut it down and alerted affected projects
A separate NPM attack hit 2,000 accounts but was unrelated

Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack against GitHub, dubbed ‘GhostAction’. The attack was spotted by security researchers GitGuardian, who notified GitHub and had it shut down.

GitGuardian’s researchers first spotted the attack when they were notified of a GitHub project called FastUUID being compromised. The project’s maintainer account was evidently broken into and used to publish a malicious Actions workflow called “Add Github Actions Security workflow”.

It was designed to steal secrets, including those from PyPI, npm, DockerHub, GitHub, Cloudflare, and AWS.

Servers shut down

The researchers reported their findings to PyPI and the project was moved to a read-only state. Soon after, the legitimate account owner regained access and withdrew the malicious commit.

However, since the attacker did not react in the next couple of days, GitGuardian’s researchers concluded that they were most likely too busy compromising other projects, and they were right. A deeper investigation uncovered 327 compromised accounts, resulting in 3,325 leaked secrets.

“Following our impact assessment, we began alerting affected users and projects by creating issues in every compromised repository,” GitGuardian explained in the report. “Among 817 affected repositories, 100 had already reverted the malicious changes. We successfully created issues for 573 of the remaining 717 projects—the others were either deleted or had disabled issues.”

Soon after GhostAction was discovered, the server to which the secrets were being exfiltrated stopped resolving, meaning the campaign was successfully disrupted.

GitGuardian was also alerted to s1ngularity, an NPM supply chain attack that compromised more than 2,000 GitHub accounts and resulted in thousands of account tokens and repository secrets being leaked. Since both attacks happened at roughly the same time, they speculated that it could have actually been all part of the same campaign. However, the investigation determined that these were two separate incidents:

“From this initial investigation, we found no intersection between those users and the recent S1ngularity attack campaign’s victims. Those two incidents are likely unrelated,” they concluded.

Via BleepingComputer

Source link

Leave a Reply Cancel reply

Related News