The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide persistence and lateral spread.
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes configs, SSH keys, and automation pipelines before being removed.
InfoWorld

Why CI/CD and Kubernetes Go Together

Managing and optimizing the software lifecycle is often a disjointed process, with developers and IT operations teams working in silos. This lack of coordination can introduce inconsistencies, errors, ...
The Hacker News

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

Trivy supply chain attack pushed malicious Docker images on March 22, enabling credential theft and worm spread, impacting cloud environments.
SDxCentral

Codefresh Kubernetes-Native CI/CD Platform Lures Microsoft Cash

Codefresh, which offers a Kubernetes-native continuous integration/continuous delivery (CI/CD) platform, more than doubled its total funding haul through an $8 ...
Analytics Insight

Top 10 Cloud Automation Tools and Platforms for 2026

Overview: Cloud automation simplifies infrastructure management by reducing manual tasks and improving deployment ...
Security Boulevard

When Do We Actually Need a Kubernetes Platform Team?

Many teams start by running Kubernetes with a few enthusiastic engineers and some shared clusters. As those clusters become critical to your operations, you eventually have to decide when you actually ...