Security News

Cybersecurity news aggregator

🌐
HIGH Attacks Reddit r/netsec

Cisco source code stolen by ShinyHunters via Trivy supply-chain attack. AWS keys breached, 300+ repos cloned and more

ciscosupply-chaintrivymitre-ta0001mitre-t1195
Attackers compromised Cisco's internal development environment by leveraging credentials stolen via the recent Trivy supply-chain attack, resulting in the exfiltration of AWS keys and the cloning of over 300 source code repositories. The article does not provide a CVSS score, specific affected or fixed version numbers for a Cisco product, or a recommended workaround.
Read Full Article →

Cisco reportedly suffered a breach of its internal development environment after attackers leveraged credentials stolen during the recent Trivy supply-chain compromise. More details linked with sample data submitted by /u/raptorhunter22 [link] [comments]

Related Articles

HIGH Trivy Supply Chain Attack: What Happened and What You Need to Know Aqua Security CRITICAL Widely used Trivy scanner compromised in ongoing supply-chain attack Ars Technica Security HIGH Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack SecurityWeek HIGH TeamPCP deploys CanisterWorm on NPM following Trivy compromise Reddit r/netsec
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn