Microsoft has released new detection and mitigation guidance following a sophisticated supply chain attack targeting Aqua Security’s popular vulnerability scanner, Trivy. The incident, tracked as CVE-2026-33634, highlights how trusted security tools can be weaponized to compromise downstream environments at scale. Supply Chain Compromise Details The attack was attributed to a threat group known as TeamPCP, […] The post Microsoft Releases Guidance to Detect and Defend Against Trivy Supply Chain Attack appeared first on Cyber Security News.