> TritonInfoSec News
Home / Mar 21, 2026 / Story
0
#1 Ars Technica Security general March 20, 2026 at 20:50 UTC

Widely used Trivy scanner compromised in ongoing supply-chain attack

By Dan Goodin

AI Summary

Attackers compromised the widely-used Trivy vulnerability scanner from Aqua Security, hijacking 75 GitHub Action tags to inject malware that steals CI/CD secrets. This supply chain attack affects organizations using aquasecurity/trivy-action and aquasecurity/setup-trivy in their automated security workflows, marking the second Trivy compromise in a month.

Read full article → https://arstechnica.com/security/2026/03/widely-us…

Relevance score: 95.0/100

# More from March 21

  1. 2
    Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw Dark Reading
  2. 3
    Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure The Hacker News
  3. 4
    CISA orders feds to patch max-severity Cisco flaw by Sunday BleepingComputer
  4. 5
    International joint action disrupts world’s largest DDoS botnets BleepingComputer
  5. 6
    FBI links Signal phishing attacks to Russian intelligence services BleepingComputer
  6. 7
    FBI takes down leak sites tied to Iran’s Ministry of Intelligence and Security The Record
  7. 8
    Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover The Hacker News
  8. 9
    Thousands of Magento Sites Hit in Ongoing Defacement Campaign SecurityWeek
  9. 10
    Max severity Ubiquiti UniFi flaw may allow account takeover BleepingComputer