GitHub API enumeration campaign exposed; GigaWiper Windows backdoor combines disk wipe, spyware
Datadog Security Labs warns of automated campaigns systematically enumerating corporate GitHub organizations via API abuse. Microsoft disassembles destructive GigaWiper backdoor combining disk wipe, ransomware, and spyware. npm 12 disables install scripts by default to reduce supply-chain risk.
Read the full briefing →