Hummingbird Security

Trivy supply chain attack: Aqua rotated credentials to cut off the attacker. The attacker stayed in using valid logins.

Mandiant: 1,000+ impacted SaaS environments.

Credential rotation is the right response, but not sufficient when the attacker already has valid access that looks legitimate to everything watching.

Behavioral detection during the persistence phase is the other half.
Try us free: gethumming.io

#Trivy #ITDR #CyberSecurity

Full article: 👇 https://cyberscoop.com/trivy-supply-chain-attack-aqua-downstream-extortion-fallout/?utm_source=dlvr.it&utm_medium=twitter

Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack

Attackers compromised the open-source security tool and published malicious versions of the software. Mandiant warns the fallout could impact up to 10,000 downstream victims.

CyberScoop
Mar 24 at 6:43pmWeb