Experts warn of a ‘loud and aggressive’ extortion wave following Trivy hack

Mandiant and Aqua Security are responding to an active supply-chain attack that compromised Trivy by exploiting a GitHub Actions misconfiguration to steal a privileged access token and publish malicious releases on March 19; over 1,000 downstream SaaS environments are already impacted and the incident is expected to cause widespread follow-on breaches, extortion attempts, and additional compromises.