"We know of over 1,000 impacted SaaS environments right now that are actively dealing with this particular threat actor."
"By moving horizontally across the ecosystem - hitting tools like liteLLM that are present in over a third of cloud environments - they are creating a snowball effect."
The Trivy supply-chain attack has compromised thousands of organizations' cloud environments with secret-stealing malware. Over 1,000 SaaS environments are currently affected, with projections indicating that this number could rise significantly. Criminals involved are collaborating with notorious extortion groups like Lapsus$, known for their aggressive tactics. The attack has also impacted critical tools like liteLLM, which is present in a significant portion of cloud environments, indicating a systemic campaign rather than an isolated incident.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]