{ads}

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Written By Saturday, 21 March 2026 Add Comment



March 21, 2026 at 12:58PM

The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large number of npm packages with a previously undocumented self-propagating worm dubbed CanisterWorm. The name is a reference to the fact that the malware uses an ICP canister, which refers to tamperproof smart contracts on

from The Hacker News https://ift.tt/hy9J8p1

0 Response to "Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads