CyberWire Daily

A subtle flaw, a massive blast radius. [Research Saturday]

Mar 21, 2026 · 17m

Yuval Avrahami from Wiz joins to share their work on "CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild." Wiz Research uncovered “CodeBreach,” a critical supply chain vulnerability caused by a subtle misconfiguration in AWS CodeBuild pipelines that allowed attackers to take over key GitHub repositories, including the widely used AWS JavaScript SDK that powers the AWS Console. By exploiting an unanchored regex filter, unauthenticated attackers could trigger privileged builds, steal credentials, and potentially inject …

An kasa rubuta wannan sashe har yanzu

Yi amfani da STT.ai don rubuta wannan sashe tare da AI. Ka sami rubutu mai kyau tare da gano mai magana, da alamun lokaci, da fitarwa cikin sifofi da yawa.

@ action

@ action @ action @ action

QDialogButtonBox

Anjali Hansen: Cross team collaboration works best. [Privacy Counsel] [Career Notes]

Apr 05, 2026 · 1m

A subtle flaw, a massive blast radius. [Research Saturday]

An kasa rubuta wannan sashe har yanzu

QDialogButtonBox

Anjali Hansen: Cross team collaboration works best. [Privacy Counsel] [Career Notes]

Startup surge sparks spy interest. [Research Saturday]

War comes for the cloud.

The WhatsApp impostor.

A war of missiles and messages.

Water sector feels the pressure.

Bringing it all together. [CISOP]

Inbox intrusion hits FBI chief.

David Nosibor: Taking calculated risks. [Product Lead] [Career Notes]

CyberWire Daily at 10: The breaches we still talk about. [Special Edition]