Scanning That QR Code Can Leave You Vulnerable. Here’s How to Protect Yourself

But QR codes can also leave you vulnerable. That’s because scammers, organized criminal gangs, and shady nation-states are ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Betterleaks, a new open-source secrets scanner to replace Gitleaks

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.

AI is getting scary good at finding hidden software bugs - even in decades-old code

AI is getting scary good at finding hidden software bugs - even in decades-old code ...

Watch what you scan: Quishing attacks are on the rise

In quishing attacks, cybercriminals place QR codes containing malicious links in public places, such as parking meters or ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
Morningstar

Anthropic’s Claude Code Security Release Is Not Bad News for Cyber Stocks

On Feb. 20, Anthropic released a vulnerability-scanning tool aimed at security applications, leading to an average drawdown of over 5% across our cybersecurity stock coverage as investors worry that ...

Xint Code Demonstrates Human-like Discovery and Prioritization of Business Logic Vulnerabilities, Analyzing Millions of Code Lines in Just Hours

Unlike traditional SAST, code scanners or pen testers, Xint Code uses multi-LLM reasoning and orchestration for human-like contextual understanding, identification and prioritization of hidden ...
People

Flight Attendants Use These Secret Codes to Signal an Emergency without Alarming Passengers

Terms like 'Code 300' or 'Angel' may be used by flight crews to signal a serious medical emergency Getty Stock Photo Flight attendants use secret language like "Code 300" or "Angel" to discreetly ...