Betterleaks, a new open-source secrets scanner to replace Gitleaks

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

Theori launches Xint Code AI platform to uncover hidden vulnerabilities in massive codebases

Offensive cybersecurity firm Theori Inc. today announced the commercial availability of Xint Code, a new large language model ...
AOL

Why The FBI Is Telling People Not To Scan QR Codes On Mystery Packages Left At Doorsteps

Getting a random package you didn't order used to be either a shipping mistake or a mildly annoying marketing ploy. Now it might be something worse, the FBI has warned in a public service announcement ...

Xint Code Demonstrates Human-like Discovery and Prioritization of Business Logic Vulnerabilities, Analyzing Millions of Code Lines in Just Hours

Unlike traditional SAST, code scanners or pen testers, Xint Code uses multi-LLM reasoning and orchestration for human-like contextual understanding, identification and prioritization of hidden ...
Mother Jones

A Knock on the Window and a Glimpse of America’s Surveillance Future

Get your news from a source that’s not owned and controlled by oligarchs. Sign up for the free Mother Jones Daily. When agents came to his workplace armed with guns, gas canisters, and artificial ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.
Agence France-Presse

Armis Launches Armis Centrix™ for Application Security to Secure the Code that Runs Organizations

Built for enterprise scalability, Armis Centrix TM for Application Security offers easy onboarding and end-to-end coverage from source code to production. It seamlessly integrates into existing ...
NPR

ICE has spun a massive surveillance web. We talked to people caught in it

On an evening in late January, Emily was driving through her Minneapolis neighborhood doing something that had become part of her routine in recent weeks: patrolling for ICE. Emily, who NPR is only ...
Hosted on MSN

How to Scan a QR Code Using Any Android Phone or iPhone

QR codes are those square barcode-looking things that when scanned by your iPhone 16 Pro, Galaxy S25 Ultra or any other phone, can send you straight to a particular webpage or to download an app, all ...

Sweden probes reported leak of e-government platform source code

Hackers claimed to have leaked the source code of the Swedish e-government services platform, creating widespread concerns of more incoming exploits through unpatched vulnerabilities.

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...