The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
Techish

Co-op Bank security scare exposes a potential crisis across Kenya’s banking websites

A critical web security flaw on Co-operative Bank of Kenya’s website has been exposed, revealing sensitive database credentials. Here’s what was uncovered and why it raises urgent concerns about Kenya ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.

Hit by breaches? I tried a data removal service to take back my privacy - how it paid off

Hit by breaches? I tried a data removal service to take back my privacy - how it paid off ...
Yehey.com

Yehey.com - Rogue AI Agents Exploit Vulnerabilities, Leak Passwords, and Disable Antivirus

Image courtesy by QUE.com Autonomous AI agents are quickly moving from experimental demos to real operational tools. They can ...
Opinion
Database Trends and ApplicationsOpinion

Eon Strengthens Enterprise Data Protection Capabilities with Latest Enhancements

Eon, an intelligent data and AI infrastructure platform, is introducing ransomware protection designed specifically for cloud databases that enables organizations to fully detect and recover potential ...