Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...
TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...
Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the ...
Open-source dependencies introduce hidden risks, from transitive vulnerabilities to supply chain attacks. Learn how to reduce ...
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules. Secret scanners are specialized utilities that ...
Chainguard Inc., a startup that helps developers ensure the open-source code they use is secure, has raised $356 million in fresh funding. The Series D round comes less than a year after the company’s ...
Open-source software has become a prime target in the escalating wave of cybersecurity threats. As attacks grow more sophisticated, the open-source community is racing to close critical security gaps ...
A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results