Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...

Aqua Security is scrambling to recover from supply chain attacks that first compromised the vendor's Trivy vulnerability ...

Aqua Security, a pioneer in cloud native security and the primary maintainer of Aqua Trivy, is launching the Trivy Partner Connect Program, expanding the commercial ecosystem around Trivy, an open ...

Codex Security, formerly Aardvark⁠, has found hundreds of critical vulnerabilities in tested software in the past month.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

While Claude already finds over 100 vulnerabilities in Firefox, OpenAI announces Codex Security, an AI vulnerability scanner.

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. A now ...

Peter Steinberger took to X to call out GitHub’s security vulnerability reporting process, calling it a “mess,” after he helped build OpenClaw into one of the fastest-growing projects and one of the ...