If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.
Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
Under New Management alerts you when your other browser extensions come under control of new owners, highlighting potential scam risks.
"Under New Management" keeps an eye on the Chrome Web Store, looking for new developer names that show up when extensions are sold off.
The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...
BloodHound Enterprise platform to cover Okta Inc., GitHub and Mac environments and introduced new OpenGraph extensions to map ...
SpecterOps, creators of BloodHound and leader in identity Attack Path Management (APM), today announced new coverage for Okta, GitHub, and Mac environments. The new BloodHound Enterprise adds ...
The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.
GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results