Aqua Security has disclosed a sophisticated supply chain attack that compromised its widely used open-source Trivy vulnerability scanner, exposing serious risks in modern CI/CD pipelines. The incident did not affect Aqua’s commercial products, but it demonstrates how attackers can weaponize trusted development workflows to steal sensitive data silently. Attack Overview The threat actors did not […] The post Aqua Security’s Trivy Scanner Hit by Supply Chain Attack appeared first on Cyber Security News.