Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution.

Authorities from the United States, Germany, and Canada have taken down Command and Control (C2) infrastructure used by the ...

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Migration Notice: This project has officially moved to the RUSTxPY organization for better community maintenance and long-term stability. Please update your bookmarks and remotes.

The first script, cot_collector.py, is designed to scrape and parse COT data from the CFTC website, specifically from the Chicago Mercantile Exchange (CME) futures reports. Here's how it operates: ...

GitHub's Octoverse 2025 data shows TypeScript became the most-used language as 80% of new developers adopt Copilot within their first week. TypeScript has dethroned both Python and JavaScript to ...