Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
SecurityWeek

OpenAI Rolls Out Codex Security Vulnerability Scanner

Codex Security, formerly Aardvark⁠, has found hundreds of critical vulnerabilities in tested software in the past month.
InfoQ

Cloud Security Posture Management Now Available in Vulnerability Scanner Trivy

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Business Wire

Binary Risk Hunt: A Free Vulnerability Scanner With SBOMs

LOS ANGELES--(BUSINESS WIRE)--Binarly, provider of the industry-leading AI-powered firmware and software supply chain security platform, today unveiled Binary Risk Hunt with advanced capabilities and ...

OpenAI launches Codex security vulnerability scanner

OpenAI unveiled Codex Security on Friday, an advanced application security tool that detects complex software vulnerabilities ...
Infosecurity-magazine.com

Hackers Use Malware to Hunt Software Vulnerabilities

Many threat actors are turning to malware to scan software vulnerabilities that they can use in future cyber-attacks. Security researchers at Unit 42, the threat intelligence branch of cybersecurity ...
StateTech Magazine

Vulnerability Exploitability eXchange: Smarter Patching for State and Local IT Teams

VEX helps public-sector security teams prioritize repairs by identifying which vulnerabilities affect their systems.
eWeek

Best Website Vulnerability Scanners

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...
InfoQ

Vulnerability Inbox Zero

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Have you ever tried mixing oil and water?
Dark Reading

Vulnerability Scanning Triples, Leading to Two-Thirds Fewer Flaws

Companies have increased the cadence of application-security testing — with triple the number of applications scanned and 20 times more scans per application — compared to a decade ago, according to ...
InfoWorld

How to detect the Log4j vulnerability in your applications

A bug in the ubiquitous Log4j library can allow an attacker to execute arbitrary code on any system that uses Log4j to write logs. Does yours? Yesterday the Apache Foundation released an emergency ...
InfoWorld

Software Vulnerability Index making progress

Officials with the Common Weakness Enumeration project say they are rapidly achieving their goal of creating a catalog of software vulnerabilities for use by developers Security experts working on the ...