Back to articles
2025 cloud security roundup: How attackers abused identities, supply chains, and AI
Datadog | The Monitor blog

2025 cloud security roundup: How attackers abused identities, supply chains, and AI

31 views

Summary

The Datadog team discovered a malicious actor attempting to contribute harmful code to their open-source repositories via a seemingly legitimate pull request. They detail how the attacker tried to inject code that would steal credentials from users of their agents, but were caught by a combination of automated checks, vigilant community members, and careful code review. This incident highlights the growing need for robust security practices in open-source projects to defend against increasingly sophisticated AI-assisted attacks.
Read the Original Article

This article originally appeared on Datadog | The Monitor blog.

Read Full Article on Original Site

Popular from Datadog | The Monitor blog

1
Datadog LLM Observability natively supports OpenTelemetry GenAI Semantic Conventions
Datadog LLM Observability natively supports OpenTelemetry GenAI Semantic Conventions

Datadog | The Monitor blog Dec 1, 2025 96 views

2
Introducing Bits AI Dev Agent for Code Security
Introducing Bits AI Dev Agent for Code Security

Datadog | The Monitor blog Mar 26, 2026 78 views

3
Understand session replays faster with AI summaries and smart chapters
Understand session replays faster with AI summaries and smart chapters

Datadog | The Monitor blog Apr 2, 2026 70 views

4
Monitoring MongoDB performance metrics (MMAP)
Monitoring MongoDB performance metrics (MMAP)

Datadog | The Monitor blog May 25, 2016 70 views

5
Introducing ARFBench: A time series question-answering benchmark based on real incidents
Introducing ARFBench: A time series question-answering benchmark based on real incidents

Datadog | The Monitor blog Apr 24, 2026 66 views