Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...
Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...
Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the ...
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Open-source dependencies introduce hidden risks, from transitive vulnerabilities to supply chain attacks. Learn how to reduce ...
A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules. Secret scanners are specialized utilities that ...
Chainguard Inc., a startup that helps developers ensure the open-source code they use is secure, has raised $356 million in fresh funding. The Series D round comes less than a year after the company’s ...
A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results