AttackFeed by Joe Wagner | Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets  - The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets  – The Hacker News

Posted on By [email protected] (The Hacker News)
Attack Feeds

Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a month to deliver malware that stole sensitive CI/CD secrets.
The latest incident impacted GitHub Actions “aquasecurity/trivy-action” and “aquasecurity/setup-trivy,” which are used to scan Docker container images for vulnerabilities and set up GitHub Actions workflow  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | Please Don’t Feed the Scattered Lapsus Shiny Hunters  - Krebs on Security
Attack Feeds
Please Don’t Feed the Scattered Lapsus Shiny Hunters  – Krebs on Security
February 2, 2026
AttackFeed by Joe Wagner | US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied  - CyberScoop
Attack Feeds
US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied  – CyberScoop
April 23, 2026
AttackFeed by Joe Wagner | Harvester APT Expands Spying Operations with New GoGra Linux Malware  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
Harvester APT Expands Spying Operations with New GoGra Linux Malware  – Hackread – Cybersecurity News, Data Breaches, AI and More
April 23, 2026
AttackFeed by Joe Wagner | n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails  - The Hacker News
Attack Feeds
n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails  – The Hacker News
April 15, 2026