GitHub Restores Compromised Open-Source Tool After Security Breach

News18 Mar 2025

GitHub has restored tj-actions/changed-files, a widely used GitHub Action with over 1 million monthly downloads, after attackers injected malicious code, exposing CI/CD secrets in public logs (CVE-2025-30066).

Please take 30 seconds to register

or if you have an account please login

teiss Team

More from this author

Europol warns of AI-driven crime threats

Lingnan University suffers cybersecurity breach, sensitive data exposed

Lehigh Valley Health Network to pay $65 million in landmark ransomware settlement

Europol warns of AI-driven crime threats

Collective defence and the rise of organised cyber-crime

US indicts slew of alleged Chinese hackers, sanctions company over spy campaign

Democrats question pause in offensive US cyber ops against Russia

Most Viewed

Ransomware attack on Université Paris-Saclay impacted servers and digital services

The Expert View: Combatting Cyber-Threats at ScaleSponsored by Infoblox

Six key takeaways from CISOs on AI’s role in securitySponsored by Tines

How putting IT teams back in control can help reduce downtimeSponsored by ManageEngine

Tackling the cyber-threatSponsored by ManageEngine

Developing the foundations of resilienceSponsored by Zscaler

The necessity of API security for B2B fintechsSponsored by Raidiam

Clop ransomware gang confirms responsibility for Cleo data theft attack

The American View: How Leadership's Knee-Jerk Reactions Wreck Workplace Culture

Energy trading technologies: increasing efficiency and resilience in European energySponsored by NTT DATA

Winston House, 3rd Floor, Units 306-309, 2-4 Dollis Park, London, N3 1HF

23-29 Hendon Lane, London, N3 1RT

020 8349 4363

info@teiss.co.uk