The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

New Checkmarx supply-chain breach affects KICS analysis tool

Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest ...
Cybernews

Checkmarx hit again, popular tools spreading credential-stealing malware

Checkmarx suffers a second supply chain attack in a month, resulting in hackers injecting credential-stealing malware into ...
Business Wire

Checkmarx KICS Integrated Into GitLab 14.5 as Default IaC Code Scanner

RAMAT GAN, Israel--(BUSINESS WIRE)--Checkmarx, the global leader in developer-centric application security testing (AST) solutions, announced today that its open source KICS (Keeping Infrastructure as ...
Dark Reading

Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit

Hard on the heels of a broad supply chain attack that impacted the Aqua Security-maintained Trivy open source security-scanner project, Checkmarx on Tuesday disclosed that attackers had compromised a ...
SiliconANGLE

Checkmarx integrates Developer Assist into Kiro for real-time AI-powered code security

Application security testing firm Checkmarx Ltd. today announced integrated development environment-native support for Kiro through Checkmarx Developer Assist, extending real-time, artificial ...
SiliconANGLE

New products from Checkmarx aim to improve code-to-cloud security visibility

Application security testing firm Checkmarx Ltd. today launched two new products, Checkmarx Application Security Posture Management and Cloud Insights, that are designed to help enterprises with ...