Web Scouter
Back to News
Security NewsHighIncidentsupply chain

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

UnknownMar 21, 2026(about 3 hours ago)

The Trivy vulnerability scanner was compromised in a supply-chain attack, distributing credential-stealing malware through official releases and GitHub Actions.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releases and GitHub Actions. [...]

Related News

Google adds ‘Advanced Flow’ for safe APK sideloading on Android

Unknownabout 7 hours ago

Microsoft Azure Monitor alerts abused in callback phishing campaigns

Unknownabout 7 hours ago

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

Unknownabout 8 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.