Cyber Security

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
Cybersecurity researchers have warned of malicious images pushed to the official "checkmarx/kics" Docker Hub repository. In an alert published today, software supply chain security company Socket revealed that unknown threat actors managed to have overwritten existing tags, including v2.1.20 and alpine, while also introducing a new v2.1.21 tag that does not correspond to an official release. The
Read More

Related Posts

Prove Identity Platform connects verification, authentication, and fraud prevention

Prove Identity Platform connects verification, authenti...

Tencent’s QClaw AI agent app arrives on Windows and macOS

Tencent’s QClaw AI agent app arrives on Windows and macOS

Phishing reclaims the top initial access spot, attackers experiment with AI tools

Phishing reclaims the top initial access spot, attacker...

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-Propagating Supply Chain Worm Hijacks npm Packages...

Claude Mythos finds 271 Firefox flaws, Mozilla believes it shifts security toward defenders

Claude Mythos finds 271 Firefox flaws, Mozilla believes...

Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack

Lotus Wiper Malware Targets Venezuelan Energy Systems i...