Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide persistence and lateral spread.
SecurityWeek

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing infections.
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.
New York Magazine on MSN

Why AI Companies Want to Take Control of Your Computer

Claude would like a little help learning how to do your job.

Anthropic Adds Claude Cowork Dispatch for Remote Desktop Control From Your Phone

Anthropic has introduced Claude Cowork Dispatch, a new features letting users control the desktop AI agent app from a phone ...

Anthropic Claude AI Can Now Get Full Control Over Your Computer

The post Anthropic Claude AI Can Now Get Full Control Over Your Computer appeared first on Android Headlines.
9to5Google

Claude can now remotely control your computer, and it looks absolutely wild [Video]

Anthropic’s Claude is launching a wild new tool that lets you ask AI on your phone to remotely control your computer to execute tasks. A new feature in Claude Cowork and Claude Code will allow the AI ...
The Hacker News

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...