The Hacker News

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...
TechJuice

Hackers Compromise Developer Tools In Major Supply Chain Attack

Hackers breach Checkmarx developer tools to steal sensitive data, exposing risks in widely used software systems.
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
Dark Reading

Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit

TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...
CoinTelegraph

Crypto-stealing malware discovered in Python Package Index — Checkmarx

According to cybersecurity firm Hacken, financial losses from crypto hacks topped $440 million in the third quarter of 2024. Researchers at the Checkmarx cybersecurity firm sounded the alarm on a ...
Techzine Europe

Checkmarx Focuses AppSec on AI Development

Checkmarx has announced an updated version of its application security platform, Checkmarx One, designed to address the rise of so-called agentic ...

Checkmarx unveils AppSec platform for the Age of Agentic Development

Checkmarx today unveiled Checkmarx One, an AppSec platform that embeds agentic, AI-driven security across code, dependencies, ...
SiliconANGLE

New products from Checkmarx aim to improve code-to-cloud security visibility

Application security testing firm Checkmarx Ltd. today launched two new products, Checkmarx Application Security Posture Management and Cloud Insights, that are designed to help enterprises with ...