SecurityWeek

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
TechSpot

Google introduces vulnerability scanner for open-source projects

In brief: Open-source development projects often must rely on many external dependencies, saving developers the work of building new functionality from scratch. Google's new tool is the latest part of ...
SecurityWeek

OpenAI Rolls Out Codex Security Vulnerability Scanner

Codex Security, formerly Aardvark⁠, has found hundreds of critical vulnerabilities in tested software in the past month.
InfoQ

Google Releases Open-Source Vulnerability Scanning Tool

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...
InfoQ

Cloud Security Posture Management Now Available in Vulnerability Scanner Trivy

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
CSOonline

Open source vulnerability scanner found with a serious vulnerability in its own code

The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...
Nasdaq

JFrog's Solution for Open Source Security, JFrog Xray, Achieves Red Hat Vulnerability Scanner Certification

SUNNYVALE, Calif.--(BUSINESS WIRE)-- JFrog Ltd. (“JFrog”) (NASDAQ: FROG), the liquid software company, has achieved the Red Hat Vulnerability Scanner Certification for JFrog Xray. Part of the JFrog ...
eWeek

Best Website Vulnerability Scanners

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...
Dark Reading

Rezilion Vulnerability Scanner Benchmark Report Finds Top Scanners Only 73% Accurate

BE'ER SHEVA, Israel, Oct. 26, 2022 /PRNewswire/ — Rezilion, an automated vulnerability management platform accelerating software security, announced today the release of the company's Vulnerability ...
Business Wire

Anchore to Contribute Grype Open Source Vulnerability Data to the Global Security Database

Contribution of Grype vulnerability data will advance software vulnerability intelligence and empower users of the Global Security Database to create secure software SEATTLE--(BUSINESS WIRE)--Today ...