CSO Online

New ‘StoatWaffle’ malware auto‑executes attacks on developers

The newly observed malware abuses VS Code’s “runOn:folderOpen” feature to execute automatically from trusted projects, ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
Businessworld

HIRE Act May Curtail Cost Arbitrage, Yet Indian IT & GCCs Retain Strategic Edge

A proposed US Senate bill may chip away at India’s traditional IT cost advantage, but experts say the country’s IT firms and GCCs, now innovation-driven, high-value hubs, are well-positioned to adapt ...