Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
NH Business Review

Supply chain attacks: steps to neutralizing the threat

On September 17, 2024, Lebanon was rocked by a series of small but lethal explosions. In the aftermath, rumors and half-truths blew up in the news as agencies scrambled to be the first to report on ...
Security

OpenText: Supply chain attacks surge, ransom payments persist

OpenText today released its third annual 2024 Global Ransomware Survey, which reveals the current state of ransomware attacks, including ransom payments, the impact of software supply chain attacks, ...
The Hacker News

Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels

CSMA links siloed security tools into attack paths to crown jewels, exposing hidden risks and enabling faster remediation.
Infosecurity-magazine.com

Supply Chain Attack Targets Key Ethereum Development Tools

A supply chain attack targeting key components of the Ethereum development ecosystem has affected the Nomic Foundation and Hardhat platforms. The attackers infiltrated the ecosystem using malicious ...
Forbes

What Supply Chain Attacks Really Want: Your Secrets

The recent Shai Hulud 2.0 incident was initially described as an “npm worm” and a “GitHub repository attack.” That framing missed the point. When you look at what actually left victims' environments, ...