Widely used Trivy scanner compromised in ongoing supply-chain attack

Widely used Trivy scanner compromised in ongoing supply-chain attack

fivenewscrypto    mars 22, 2026   

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing supply chain attack that could have wide-ranging consequences for developers and the organizations that use them.

Trivy maintainer Itay Shakury confirmed the compromise on Friday, following rumors and a thread, since deleted by the attackers, discussing the incident. The attack began in the early hours of Thursday. When it was done, the threat actor had used stolen credentials to force-push all but one of the trivy-action tags and seven setup-trivy tags to use malicious dependencies.

Assume your pipelines are compromised

A forced push is a git command that overrides a default safety mechanism that protects against overwriting existing commits. Trivy is a vulnerability scanner that developers use to detect vulnerabilities and inadvertently hardcoded authentication secrets in pipelines for developing and deploying software updates. The scanner has 33,200 stars on GitHub, a high rating that indicates it’s used widely.

Read full article

Comments

NASA issues draft request for moving space shuttle Discovery—or Orion capsule

NASA issues draft request for moving space shuttle Discovery—or Orion capsule

fivenewscrypto    mars 22, 2026   

NASA has taken a step forward to moving an undetermined spacecraft of a various size on an indefinite date to a yet-to-be-decided location.

Or to put it another way: NASA is seeking to learn more about what it would take to remove the space shuttle Discovery from the Smithsonian in Virginia and relocate it to Houston, as compared to transporting a smaller space capsule from anywhere in the country.

The space agency on Thursday (March 19) released a draft request for proposal (DRFP) for the "NASA Flown Space Vehicle Multimodal Transportation Multiple Award Contract," seeking to learn how contractors would approach transporting both "large aerospace vehicles and smaller spacecraft capsules."

Read full article

Comments

Trump FCC lets Nexstar buy Tegna and blow way past 39% TV ownership cap

Trump FCC lets Nexstar buy Tegna and blow way past 39% TV ownership cap

fivenewscrypto    mars 22, 2026   

The Federal Communications Commission yesterday approved Nexstar Media Group's $6.2 billion purchase of Tegna, granting a waiver that lets the broadcast giant go way past the national limit on station ownership.

Nexstar said it closed the acquisition late in the day yesterday, immediately after receiving the FCC approval. The deal was also approved by the US Department of Justice, but a group of state attorneys general are challenging the merger in court in an attempt to unwind it.

Opponents say the FCC lacks authority to grant the waiver and that only Congress can change the 39 percent ownership limit. While the FCC says Nexstar will own fewer than 15 percent of TV stations, the cap in the FCC's National Television Ownership Rule is calculated by the percentage of US households reached by a single entity's stations. The Nexstar/Tegna combination will reach 80 percent of TV households in the US, or 54.5 percent when applying what's known as the "UHF discount."

Read full article

Comments

RFK may replace entire panel of CDC vaccine advisors again, ally lets slip

RFK may replace entire panel of CDC vaccine advisors again, ally lets slip

fivenewscrypto    mars 22, 2026   

A member of an influential federal vaccine advisory panel made a dramatic claim Thursday afternoon that the panel had been disbanded following a temporary block by a federal judge and would be entirely reconstituted—again. But, just hours later, he retracted the claim, saying that it was merely a possibility.

The claim immediately caused a stir online. Public health experts began to cheer the news, given that most of the current members hold anti-vaccine views and have little to no qualifications for being on the panel—which is the Centers for Disease Control and Prevention's Advisory Committee on Immunization Practices (ACIP). Current members were hand-selected by anti-vaccine health Secretary Robert F. Kennedy Jr., who had summarily fired all 17 experts previously on ACIP. Kennedy's new ACIP members have since held several chaotic meetings in which they voted to roll-back CDC's evidence-based vaccine guidance.

On Monday, Federal Judge Brian Murphy issued a temporary injunction blocking Kennedy's ACIP members and their votes after finding that they were improperly appointed and vaccine recommendations were changed without procedural requirements. The ruling stemmed from a lawsuit brought by the American Academy of Pediatrics (AAP) and other medical groups, who challenged Kennedy's anti-vaccine efforts.

Read full article

Comments

Perseverance’s radar revealed ancient subsurface river delta on Mars

Perseverance’s radar revealed ancient subsurface river delta on Mars

fivenewscrypto    mars 22, 2026   

When NASA’s Perseverance rover landed in Jezero Crater in 2021, its primary mission was to scour the remnants of a dried-up Martian lakebed for signs of ancient life. Scientists have been focused on the crater's spectacular Western Delta, a fan-shaped geologic feature deposited by a river flowing into the basin billions of years ago. But now Perseverance’s ground-penetrating radar (called RIMFAX) detected what is likely another, even older river delta buried tens of meters beneath it.

“I think it’s a promising place to look for signs of biosignatures at depth,” says Emily L. Cardarelli. “Microbial life could have potentially developed in those types of environments.” Cardarelli, an astrobiologist at the University of California Los Angeles, led the team interpreting RIMFAX imagery.

Peeking underground

Perseverance’s RIMFAX, the Radar Imager for Mars Subsurface Experiment, continuously fires radar waves into the ground, acquiring soundings each time the rover traveled 10 centimeters. When these radio waves hit boundaries between different types of rock, ice, or sediment layers, some of the signal bounces back. The timing and intensity of these reflections allow scientists to construct a two-dimensional, vertical slice of the subsurface, much like a sonogram of the Martian crust.

Read full article

Comments

NASA wants to know how the launch industry's chic new rocket fuel explodes

NASA wants to know how the launch industry's chic new rocket fuel explodes

fivenewscrypto    mars 22, 2026   

For more than 60 years, nearly every large rocket used some combination of the same liquid and solid propellants. Refined kerosene was favored for its easy handling and non-toxicity, hydrazine for its storability and simplicity, hydrogen for its efficiency, and solid fuels for their long shelf life and rapid launch capability.

About 15 years ago, rocket companies started serious development of large methane-fueled engines. SpaceX and Blue Origin now build the most powerful of these new engines—the Raptor and BE-4—each capable of generating more than half a million pounds of thrust. SpaceX's Starship rocket and its enormous booster are powered by 39 Raptors, while Blue Origin's New Glenn and United Launch Alliance's Vulcan rockets use a smaller number of BE-4s on their booster stages.

Burning methane in combination with liquid oxygen, these "methalox" engines have several advantages. Methane is better suited for reusable engines because they leave less behind sooty residue than kerosene, which SpaceX uses on the Falcon 9 rocket. Methane is easier to handle than liquid hydrogen, which is prone to leaks and must be stored at staggeringly cold temperatures of around minus 423 degrees Fahrenheit (minus 253 degrees Celsius). Methane is also a cryogenic liquid, but it has a warmer temperature closer to that of liquid oxygen, between minus 260 and minus 297 degrees Fahrenheit (minus 162 to minus 183 degrees Celsius).

Read full article

Comments

Amazon is reportedly developing an AI-centric smartphone

Amazon is reportedly developing an AI-centric smartphone

fivenewscrypto    mars 22, 2026   

Amazon is developing a new smartphone over a decade after discontinuing the Fire Phone, Reuters reported today, citing four anonymous “people familiar with the matter.”

Reuters said the phone is codenamed Transformer but couldn’t confirm what it might cost, how much Amazon has invested into development thus far, or how much Amazon expects to make off the device. Like any product reportedly under development, it’s possible that Amazon will never release the phone. Reuters’ sources noted that Transformer could be cancelled over finances or a change in strategy.

When reached for comment by Ars Technica, an Amazon spokesperson declined to comment on Reuters’ report.

Read full article

Comments