GitHub on Tuesday said it’s investigating unauthorized access to its internal repositories after the notorious threat actor known as TeamPCP listed the platform’s source code and internal organizations for sale on a cybercrime forum.
“While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely monitoring our infrastructure for follow-on activity,” the Microsoft-owned subsidiary said.
The company also noted that it will notify customers via established incident response and notification channels if any impact is discovered.
Dubbed DirtyDecrypt (aka DirtyCBC), the vulnerability was discovered and reported by the Zellic and V12 security team on May 9, 2026, only to be informed by the maintainers that it was a duplicate of a vulnerability that had already been patched in the mainline.
“It’s a rxgk pagecache write due to missing COW [copy-on-write] guard in rxgk_decrypt_skb,” Zellic co-founder Luna Tong (aka cts and gf_256) said in a description shared on GitHub.
Although the CVE identifier was not disclosed, the vulnerability in question is CVE-2026–31635 (CVSS score: 7.5) based on the fact that the NIST National Vulnerability Database (NVD) includes a link to the DirtyDecrypt PoC in its CVE record.
A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate applications and administration features.
Microsoft tracks the actor as Storm-2949 and says that the purpose of the attacks is “to exfiltrate as much sensitive data from a target organization’s high-value assets as possible.”
Storm-2949 used social engineering to target users with privileged roles, such as IT personnel or members of senior leadership, and obtain their Microsoft Entra ID credentials to gain access to data in Microsoft 365 applications.
Incidental findings: common, often benign–but not always. This review updates ACR guidance, highlights gaps, and challenges prior recommendations across organs. A must-read to refine management and avoid unnecessary workup.
“The flight test’s primary goal will be to demonstrate each of these new pieces in the flight environment for the first time,” a post to SpaceX’s website explained.
“As this is the first flight test of a significantly redesigned vehicle, the booster will not attempt a return to the launch site for catch.”
A live stream of the launch will be available on SpaceX’s website, as well as the company’s official X page and YouTube channel.
NASA’s Psyche spacecraft completed its close approach of Mars on May 15, coming within 2,864 miles (4,609 kilometers) of the planet’s surface. This flyby used
A few hours ago, the Smile satellite was launched from the Kourou Spaceport in French Guiana atop a Vega-C rocket. After about 56 minutes, the Smile satellite separated from the rocket’s last stage and began maneuvers that are scheduled to last approximately 25 days. Eleven burns of the spacecraft’s engines will lengthen its orbit, initially circular at an altitude of approximately 700 kilometers, to approximately 121,000 kilometers above the North Pole and approximately 5,000 kilometers above the South Pole.
The Smile (Solar Wind Magnetosphere Ionosphere Link Explorer) mission is a joint project between ESA and the Chinese Academy of Sciences, and is part of ESA’s Cosmic Vision program, which aims to improve our understanding of the solar system. In this case, the focus is on the solar wind and how Earth responds to it. Geomagnetic storms and auroras show, in sometimes spectacular ways, the effects of charged particles from the Sun on the Earth’s magnetosphere.
The Smile satellite is equipped with four instruments designed to study the effects of the solar wind in various ways. It’s not the first mission designed to study the magnetosphere and its interactions with the solar wind, and each new satellite offers new insights. The Smile mission is the first to focus on the mechanisms that lead to the transfer of energy from the solar wind to the Earth’s atmosphere to observe them fully on a global scale.
Matthew Weinzierl and Brendan Rosseau, authors of Space to Grow, explain the commercial space economy and the role of NASA, Artemis, commercial space stations, space-based data centers, Starlink, GPS, China’s space program, national security, and space governance.
The conversation covers how governments, private companies, and investors build, fund, regulate, and compete in space, from microgravity research and launch markets to lunar exploration, space resources, and the economics of commercial space.
We also try and re-write the Space Treaty and look at the politics of the space race.
Please enjoy the show.
Thinking on Paper is a technology podcast about AI, Space, quantum computing, science, and the systems shaping the future.
An extremely interesting new technology which combines bacterial retrons with CRISPR-Cas for localized generation of single-stranded DNA inserts and subsequent targeted genome editing. I remember reading about retrons as an obscure biological phenomenon years ago in a monograph called Mobile DNA III, so it’s awesome to see them leveraged in this way!
A metagenomic screen identifies retron reverse transcriptases for precise genome-editing applications.
