Supply Chain Attack Exploits Trivy to Steal CI/CD Secrets

A threat actor exploited the open-source security tool Trivy to conduct a supply chain attack, deploying an infostealer into CI/CD workflows. The attack targeted and stole sensitive secrets, including cloud credentials, SSH keys, and authentication tokens. No specific dates, CVE IDs, or victim organizations were disclosed in the report. The primary impact involved the exfiltration of critical credentials used in continuous integration and deployment pipelines. The attack highlights risks associated with compromised security tools in automated development environments.