Tag: supply-chain
All the articles with the tag "supply-chain".
-
A Security Scanner Got Hacked. Then It Infected Everything It Scanned.
Trivy, one of the most trusted vulnerability scanners in DevOps, was compromised. The attack spawned CanisterWorm, a self-propagating npm worm that used blockchain as a command server. 141 packages infected. The irony is brutal.