The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.

An early contender for movie of the year

I also have for you a must-see movie for the weekend, a couple of fun new ways to play with AI, a piece of delightfully ...
Accounting Today

Tech news: Deloitte and UiPath team up to launch Agentic ERP

Deloitte and UiPath team up to launch Agentic ERP; EY announces new software development model; SAP touts new integrations, features for Concur; and other accounting tech news and updates.