Trivy Compromised: Everything You Need to Know about the Latest Supply Chain Attack
Summary
The Wiz report details a multi-component supply chain attack against Aqua Security's Trivy, including compromised releases, GitHub Actions, and a C2 infrastructure. It outlines attacker tactics, data theft methods, and the indicators of compromise, and provides concrete remediation steps like auditing versions and enforcing SHA pinning. The article also includes IOCs and references to advisories to help security teams detect and mitigate similar attacks.