Ep. 19 – Cordyceps: How insecure GitHub Actions CI/CD workflows let attackers hijack Microsoft, Google, and Apache repositories with just a free account

Port 443 · Episode 19 · Jun 26, 2026 · 24:14

Cordyceps: How insecure GitHub Actions CI/CD workflows let attackers hijack Microsoft, Google, and Apache repositories with just a free account

Port 443 dives into Cordyceps: How insecure GitHub Actions CI/CD workflows let attackers hijack Microsoft, Google, and Apache repositories with just a free account.

Show notes

Overview: Port 443 dives into Cordyceps: How insecure GitHub Actions CI/CD workflows let attackers hijack Microsoft, Google, and Apache repositories with just a free account.
Tags: cybersecurity, threat intelligence, Microsoft, gaming platforms, supply chains

Links and references

cybersecurity
threat intelligence
Microsoft
gaming platforms
supply chains

Episode Outline

Timestamped topic guide generated from the episode audio for quick scanning.

Loading transcript... [00:00] Port 443 dives into Cordyceps: How insecure GitHub Actions CI/CD workflows let attackers hijack Microsoft, Google, and Apache repositories with just a free account.