Reports have emerged that the popular scanning tool Trivy has been hacked as part of an ongoing attack on the supply chain. The warning was directed at system administrators and security supervisors, who highlighted the potential need to immediately rotate secrets and sensitive data.
A news source relayed a brief warning stating: “We regret to say that it may be a weekend for rotating secrets.” In this context, officials urged a review of access keys and credentials used in the systems that require protection.
No further details have been provided by sources regarding the extent of the breach or the parties involved, nor additional information on the exploitation method or fixes until more official reports are released.