URL has been copied successfully!
Aqua Security’s Trivy Scanner Hit by Supply Chain Attack, Threatening Software Integrity
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Aqua Security’s Trivy Scanner Hit by Supply Chain Attack, Threatening Software Integrity


Tags: , , , , , , , , ,

A sophisticated supply chain attack compromised Aqua Security’s popular open-source Trivy vulnerability scanner. Threat actors successfully distributed malicious code through the project’s GitHub Actions, targeting deployment pipelines to silently exfiltrate sensitive credentials. While Aqua’s commercial products remain completely unaffected, the incident highlights the severe risks of using mutable version tags in deployment automation. The attack […] The post Aqua Security’s Trivy Scanner Hit by Supply Chain Attack, Threatening Software Integrity appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/aqua-securitys-trivy-scanner-hit-by-supply-chain-attack/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  2. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  3. Cybersecurity Snapshot: CISA Highlights Vulnerability Management Importance in Breach Analysis, as Orgs Are Urged To Patch Cisco Zero-Days
  4. From feeds to flows: Using a unified linkage model to operationalize threat intelligence