Topic: version spoofing

Sort by: Relevance | Date
  • Trivy Scanner Compromised in Major Supply-Chain Attack
    March 21, 2026
    83%

    Trivy Scanner Compromised in Major Supply-Chain Attack

    A supply-chain attack compromised nearly all versions of the Trivy vulnerability scanner after attackers used stolen credentials to force malicious code into its Git repository. The injected malware harvests sensitive data like GitHub tokens and cloud credentials from development pipelines and ma...

    Read More »

Related Topics

data exfiltration (146) developer tools (130) credential theft (92) supply chain attack (32) open source security (27) security response (15) github security (4) vulnerability scanner (3)