Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

Salesforce has evolved far beyond a simple CRM. In 2026, it serves as a core digital platform spanning Sales Cloud, Service ...

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency ...

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...

Anthropic has detailed advanced Claude Code patterns for subagent orchestration, MCP tool integrations, and context ...

New CNCF Technology Landscape Radar survey shows which cloud native tools developers view as mature and ready for broad adoption. Key Highlights: CNCF and SlashData release findin ...

New Open Remediation Language powers automated, policy-aligned fixes across cloud and code via merge-ready pull ...

Brown and Caldwell, a purpose-driven engineering consulting firm creating and delivering water and environmental solutions throughout North America and the Pacific, has formed a strategic partnership ...

A threat actor used the open source security tool to breach CI/CD workflows and steal cloud credentials, SSH keys, and other ...

The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images ...

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...