Kevin Beaumont6d ago
Aqua Security Trivy had another supply chain compromise, I don’t know if they’ve disclosed yet. https://github.com/aquasecurity/trivy/discussions/10420
Why did this discussion about the Trivy incident get removed/closed · aquasecurity trivy · Discussion #10420

https://github.com/aquasecurity/trivy/discussions/10265 Why did this get removed when active discussion on a new (maybe related) incident was happening?

GitHub
Show threadSandfish68113d ago
@GossiTheDog LiteLLM has a similar supply chain incident. Could be the same group. https://futuresearch.ai/blog/litellm-pypi-supply-chain-attack/
Supply Chain Attack in litellm 1.82.8 on PyPI

litellm version 1.82.8 on PyPI contains a malicious .pth file that harvests SSH keys, cloud credentials, and secrets on every Python startup, then attempts lateral movement across Kubernetes clusters.

FutureSearch
Show threadTaiki
@Sandfish6811 @GossiTheDog It's the same group, the compromise happened through Trivy
Mar 24 at 2:47pmIvory for Mac