Trivy supply chain attack pushed malicious Docker images on March 22, enabling credential theft and worm spread, impacting ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

A critical Langflow vulnerability leading to unauthenticated remote code execution has been exploited hours after public ...

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python ...

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

GitHub's Octoverse 2025 data shows TypeScript became the most-used language as 80% of new developers adopt Copilot within their first week. TypeScript has dethroned both Python and JavaScript to ...

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login authentication. Researchers at Canada-based Flare Systems, who discovered the botnet, ...

Former GitHub CEO Thomas Dohmke has raised the largest-ever seed round for a dev tool startup, according to its lead backer, Felicis. The startup, Entire, has raised $60 million at a $300 million ...

A long-running malware operation known as SystemBC has been linked to more than 10,000 infected IP addresses worldwide, including systems associated with sensitive government infrastructure. According ...