Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

Shocking $4 billion security breach: How a 36-minute Strava run exposed France's secret aircraft carrier

A French naval officer’s 7km jog just became a national security crisis. Discover how a public Strava profile accidentally ...
Security Boulevard

Why should enterprises be certain about secrets vaulting

Are You Confident in Your Enterprise’s Secrets Vaulting Strategy? Emerging threats and cybersecurity challenges have spurred organizations to reconsider their approach to managing machine identities, ...
The Security Ledger

Exposed Developer Secrets Surge: AI Drives 34% Increase in 2025

AI-driven development fueled a surge in developer secrets leaks last year, with nearly 29m credentials discovered on public GitHub repos.
American Banker

LexisNexis hit by second data breach in two years

Cybercriminals say they stole sensitive records by exploiting an unpatched vulnerability known as React2Shell and using the ...

Telus Digital confirms breach after hacker claims 1 petabyte data theft

Canadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors ...