Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
Computerworld

Microsoft 365

Microsoft’s U-turn after facing regulatory heat for pushing Copilot-linked price hikes could mark a turning point in how Big Tech discloses AI-driven software costs. Microsoft will process M365 ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...