The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Betterleaks, a new open-source secrets scanner to replace Gitleaks

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.
Bleeping Computer

GreyNoise launches free scanner to check if you're part of a botnet

GreyNoise Labs has launched a free tool called GreyNoise IP Check that lets users check if their IP address has been observed in malicious scanning operations, like botnet and residential proxy ...
Game Rant

All LiDAR Scanner Locations for ARC Raiders Eye in the Sky Quest

Marc Santos is a Guides Staff Writer from the Philippines with a BA in Communication Arts and over six years of experience in writing gaming news and guides. He plays just about everything, from ...
gadgets360

iQOO 15 Confirmed to Come With IP68+IP69 Dust and Water Resistance, Faster 3D Ultrasonic Fingerprint Scanner

Further, the iQOO 15 is confirmed to have a new generation 3D ultrasonic fingerprint scanner with wet touch support. iQOO 15 IP Ratings, More Features Confirmed In a post on the Chinese microblogging ...