Trivy Supply Chain Attack Targets Docker and Kubernetes — BleepingComputer

The Trivy supply-chain attack has expanded, affecting Docker Hub and Kubernetes environments. Hackers are distributing malicious artifacts via Docker Hub, leading to the deployment of infostealers and a worm capable of triggering Kubernetes wiper scripts. This attack highlights significant risks in CI/CD workflows and necessitates immediate review and tightening of supply chain security measures.

Mazda and Crunchyroll Hit by Significant Data Breaches — BleepingComputer

Mazda has disclosed a security breach exposing employee and partner data, while Crunchyroll is investigating a claim of a breach affecting 6.8 million users. These incidents underscore the ongoing threat of data breaches across industries, emphasizing the need for robust data protection strategies and incident response plans to mitigate potential damage and protect sensitive information.

CISA Orders Patching of DarkSword iOS Vulnerabilities — BleepingComputer

CISA has issued an emergency directive requiring U.S. government agencies to patch three iOS vulnerabilities actively exploited in cryptocurrency theft attacks. The vulnerabilities, identified as CVEs related to the DarkSword exploit, pose significant risks to unpatched devices. Security teams must prioritize these patches to prevent potential exploitation and safeguard sensitive data.

• We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them [The Hacker News]
• Tycoon2FA phishing platform returns after recent police disruption [BleepingComputer]
• ‘CanisterWorm’ Springs Wiper Attack Targeting Iran [Krebs on Security]
• North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware [The Hacker News]
• Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware [The Hacker News]