Storyline
Trivy supply chain attack spreads infostealer via Docker amid TeamPCP’s wiper campaign in Iran
The Trivy vulnerability scanner was compromised through a supply chain attack involving malicious Docker images (versions 0.69.4 to 0.69.6) that distributed the TeamPCP infostealer malware, impacting CI/CD environments.
Evidence locked
Today's free sample is only available for the edition's flagship storyline.
Evidence preview
- The Hacker Newsthehackernews.com
- Infosecurity Magazineinfosecurity-magazine.com
- SecurityWeeksecurityweek.com
- krebsonsecuritykrebsonsecurity.com