Top Tweets for #developersecurity
Attackers target developer machines to harvest credentials, bypassing supply chain defenses. Secure dev endpoints.
#developersecurity #supplychainattack #credentialharvesting #applicationsecurity
👨💻 Dev Tip: Implement Content Security Policy headers
Why:
Reduces attack surface and improves security
270 packages have security issues packages have this issue!
Level up your security → #DeveloperSecurity #CodeSecurity #AppSec
VS Code Zero-Day Lets Attackers Steal GitHub Tokens #vscodezeroday #githubtokentheft #developersecurity https://t.co/ax38MdcHf6
CVE-2026-44211 (Cline Kanban). A malicious site can interfere with AI agent sessions, and potentially hijack terminal input. PoC exists
See full analysis:
https://t.co/Gtl1XlmdMf
#CyberSecurity #DPI #AIsecurity #DeveloperSecurity #WebSockets
🛠️ For Developers:
Always audit your dependencies before publishing
Common mistake:
Using unverified dependencies
Better approach:
Audit all external packages
Level up your security → #DeveloperSecurity #CodeSecurity #AppSec
🤦♂️ GitHub “stress” + Azure migration strain + repo theft? That’s not turbulence, that’s the runway on fire. If AI coding is the future, reliability has to be the first feature.
https://t.co/5kKGjiAV4Y
#AzureMigration #DeveloperSecurity #GithubReliability #AiCodingPlatforms
GitHub Confirms 3,800-Repo Breach Traced to TanStack npm Supply Chain Worm #cybersecurity #supplychain #GitHub #OpenAI #CICD #developerSecurity https://t.co/0xUztoN0Rs
🔐 Our response to the TanStack npm supply chain attack — Official Security Update
OpenAI published full details of their response to the Mini Shai-Hulud supply chain attack. macOS users must update all OpenAI...
https://t.co/LvAF782eVr
#AI #News #DeveloperSecurity
🤖 CVE-2026-41109: AI coding tools getting a security bypass in the same space as creds + terminals? That’s not an IDE bug—that’s “oops, your dev workflow is the endpoint.”
https://t.co/pbHeJKxndh
#VisualStudioCode #GithubCopilot #DeveloperSecurity #Cve2026
Fake Claude Code installers are hijacking developer cookies to steal secrets. Threat actors weaponized a new COM interface to bypass security. #cybersecurity #CyDhaal #cookieTheft #malware #developerSecurity #sessionHijacking ⚠️
A new Linux implant called Quasar Linux RAT targets developers, stealing npm, AWS,and Kubernetes credentials to poison software supply chains.
https://t.co/zAhFCSw91J
#QuasarLinuxRAT #QLNX #SupplyChainAttack #DeveloperSecurity #CredentialTheft #PAMBackdoor #TrendMicro #InfoSec
PyTorch Lightning and Intercom Client Users Exposed to Credential Stealing Campaign https://t.co/zAkKJuNlUr #CloudCredentialExposure #CredentialTheft #DeveloperSecurity
Beyond the firewalls: Modern cyberwarfare is shifting from brute-force attacks to sophisticated human manipulation. Understanding how these scams start is the first step in protecting your digital assets. 💻🔐
#CyberAwareness #CryptoSecurity #TechTrends #Sodio #DeveloperSecurity
Malicious Ruby Gems & Go Modules Steal Dev Secrets via CI
https://t.co/t3DCAASC1Z
#SupplyChainAttack #RubyGems #GoModules #CIsecurity #DevSecOps #CyberSecurity #SoftwareSupplyChain #MalwareAlert #DeveloperSecurity
Malicious Ruby Gems & Go Modules Steal Dev Secrets via CI
https://t.co/19U3ZnZdxk
#SupplyChainAttack #RubyGems #GoModules #CIsecurity #DevSecOps #CyberSecurity #SoftwareSupplyChain #MalwareAlert #DeveloperSecurity
Cursor AI editor found storing API keys and tokens in an unprotected SQLite database, allowing extensions to steal credentials silently. CVSS 8.2. No patch yet.
#CursorAI #CyberSecurity #InfoSec #AI #DeveloperSecurity #APIKeys #CredentialTheft #Security
https://t.co/JzN9NY3Eo2
@github OAuth Phishing Uses Issue Alerts to Steal Access
Explore the full update: https://t.co/kacSF80bTZ
#Cybersecurity #Phishing #OAuth #GitHub #DeveloperSecurity #InfoSec
Aikido Security lanceert Aikido Endpoint, een agent die endpoints van ontwikkelaars beschermt tegen supply chain-aanvallen. https://t.co/zHyWnTUqon #Security #AikidoEndpoint #AikidoSecurity #developersecurity
DeepL goes voice, a €54k Firebase API key disaster, Gemini lands on Mac, and LinkedIn data on AI's hiring impact — your 48-hour AI digest is live 🔐🎙️ https://t.co/0WyYX6zHAI #AIInfrastructure #GenerativeAI #DeveloperSecurity
North Korea’s "graphalgo" campaign uses fake job interviews and real Florida LLCs to infect developers. Learn how to spot this sophisticated state-sponsored trap.
#Graphalgo #CyberSecurity #NorthKorea #DeveloperSecurity #InfoSec #Malware #Blockchain
https://t.co/cNTFK87xp6
Last Seen Hashtags on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers