GoKawiil - Tech News

1.

Broken VECT 2.0 ransomware acts as a data wiper for large files (bleepingcomputer.com)

2026-04-28 | get Cybersecurity Data Recovery Kit → | tags: vect 2.0, breachforums, teampcp

2.

GitHub Actions is the weakest link (news.ycombinator.com)

2026-04-28 | by Andrew Nesbitt | get GitHub Actions Workflow Kit → | tags: github actions, open source, supply chain

3.

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data (bleepingcomputer.com)

2026-04-28 | get GitHub Security Monitoring Tool → | tags: checkmarx, lapsus$, github

4.

Bitwarden CLI Is the Next Compromise In Checkmarx Supply Chain Campaign (slashdot.org)

2026-04-24 | get Bitwarden Password Manager → | tags: bitwarden, checkmarx, jfrog

5.

How the Trivy supply chain attack harvested credentials from secrets managers (news.ycombinator.com)

2026-04-09 | get Trivy Security Scanner → | tags: trivy, aqua security, secrets managers

6.

Open source security at Astral (news.ycombinator.com)

2026-04-09 | get Open Source Security Toolkit → | tags: github actions, astral, trivy

7.

Open Source Security at Astral (news.ycombinator.com)

2026-04-09 | get Open Source Security Book → | tags: github actions, astral, trivy

8.

CERT-EU: European Commission hack exposes data of 30 EU entities (bleepingcomputer.com)

2026-04-03 | get Cybersecurity USB Data Block → | tags: cert-eu, european commission, amazon web services

9.

Cisco source code stolen in Trivy-linked dev environment breach (bleepingcomputer.com)

2026-03-31 | get Cybersecurity Software Bundle → | tags: cisco, trivy, github

10.

Telnyx package compromised on PyPI (news.ycombinator.com)

2026-03-27 | get PyPI Security Audit Tool → | tags: telnyx, pypi, python sdk

11.

Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit (darkreading.com)

2026-03-24 | get Checkmarx KICS Code Scanner → | tags: checkmarx, kics, teampcp

12.

Self-propagating malware poisons open source software and wipes Iran-based machines (arstechnica.com)

2026-03-24 | get Cybersecurity Malware Detection Kit → | tags: teampcp, trivy, aqua security

13.

Trivy Supply Chain Attack Targets CI/CD Secrets (darkreading.com)

2026-03-23 | get Cybersecurity Container Scanner → | tags: trivy, ci/cd, infostealer

14.

Trivy supply-chain attack spreads to Docker, GitHub repos (bleepingcomputer.com)

2026-03-23 | get Docker Security Scanner → | tags: trivy, aqua security, docker hub

15.

Trivy under attack again: Widespread GitHub Actions tag compromise secrets (news.ycombinator.com)

2026-03-22 | get Trivy Security Scanner → | tags: trivy, github actions, aquasecurity

16.

Trivy Supply Chain Attack Spreads, Triggers Self-Spreading CanisterWorm Across 47 npm Packages (slashdot.org)

2026-03-22 | by Posted | get Trivy Vulnerability Scanner → | tags: trivy, supply chain attack, npm packages

17.

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions (bleepingcomputer.com)

2026-03-21 | get Trivy Vulnerability Scanner Book → | tags: trivy, github actions, teampcp

18.

Widely used Trivy scanner compromised in ongoing supply-chain attack (arstechnica.com)

2026-03-20 | get Trivy Vulnerability Scanner → | tags: trivy, aqua security, supply chain attack

19.

Trivy ecosystem supply chain briefly compromised (news.ycombinator.com)

2026-03-20 | get Cybersecurity Supply Chain Kit → | tags: trivy, supply chain, ecosystem