Web Scouter
Back to News
Security News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

UnknownApr 22, 2026(3 days ago)

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Cybersecurity researchers have warned of malicious images pushed to the official "checkmarx/kics" Docker Hub repository. In an alert published today, software supply chain security company Socket revealed that unknown threat actors managed to have overwritten existing tags, including v2.1.20 and alpine, while also introducing a new v2.1.21 tag that does not correspond to an official release. The

Related News

Coffee Chats with WIN: Rachel Dikovics & Mikayla Berliner

Unknownabout 2 hours ago

CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline

Unknownabout 2 hours ago

[Video] Betting the Game: From Taboo to Business Model: How Gambling Entered the Sports Mainstream

Unknownabout 2 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.