Point Wild Releases Free LiteLLM Vulnerability Scanner Within 24 Hours of Supply Chain Attack

New AI-powered scanner -- who-touched-my-packages -- detects zero-day malicious packages and credential exfiltration in seconds BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
SecurityWeek

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

Citrix has patched CVE-2026-3055, a critical NetScaler vulnerability that allows remote, unauthenticated attackers to read ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...

ProjectDiscovery Launches Neo, an Advanced Security Testing Platform That Finds and Proves Real Vulnerabilities

ProjectDiscovery, winner of the 2025 RSAC Innovation Sandbox, today announced the commercial launch of Neo, an advanced security testing platform that autonomously performs end-to-end penetration ...

Self-propagating malware poisons open source software and wipes Iran-based machines

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...
TechRepublic

Cisco Patches Three Critical Vulnerabilities – Here are the Products Affected

Cisco Patches Three Critical Vulnerabilities – Here are the Products Affected Your email has been sent Severe vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity ...