BACK TO NEWSCYBERSECURITYXygeni GitHub Action Compromised Via Tag PoisonThursday, March 12, 2026 at 02:12 PM|Original SourceAttackers operated an active C2 implant for up to a week, and researchers argue the application security vendor should have done more to address the issue.