Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
Infosecurity Magazine

What CISOs Should Know (And Do) About OpenClaw

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...
GitHub

Global Fishing Watch API Python Client

Map Visualization (4Wings API): Access AIS apparent fishing effort, AIS vessel presence, and SAR vessel detections between 2017 to ~5 days ago. Vessels API: Search and retrieve vessel identity based ...
IEEE

Linux Kernel Module Security Framework for Real-Time Malware Detection and Prevention Compared to Traditional Security Approaches

Abstract: The Linux Kernel Module Security Framework is a real-time system that functions as a malware prevention solution to address traditional security weaknesses within Linux operating systems.
GitHub

VirusTotal Code Insights (Binary Ninja Plugin)

This plugin integrates VirusTotal Code Insights with Binary Ninja. It allows analysis of the currently selected function or text (HLIL or assembly) by submitting it to the VirusTotal Code Insights API ...
IEEE

Deep Learning Based Pattern Discovery for Real Time Threat Detection

Abstract: Users become active targets for malicious actors because they lack knowledge about how their online communication platforms operate. As one of the most common messaging services, Telegram ...