Vulnerability Scanner Compromise Affects Trivy Users on Docker Hub

A major security incident has been reported affecting users of Aqua Security’s Trivy vulnerability scanner, specifically versions 0.69.4, 0.69.5, and 0.69.6 as well as the latest tag on Docker Hub from March 18 to March 23, 2026.

Scope of the Incident

The breach began at 18:24 UTC on March 19, when threat actors managed to compromise Aqua Security’s CI/CD pipeline. They inserted malware into Trivy images hosted on Docker Hub, targeting versions 0.69.4, 0.69.5, and 0.69.6. The latest tag was also affected.

The malicious payload had the capability to exfiltrate sensitive information such as CI/CD secrets, cloud credentials, SSH keys, and Docker configurations from users who pulled these images into their systems. By leveraging compromised Aqua Security credentials, attackers were able to push tainted images through the build system without raising suspicion on Docker Hub.

Timeline of Events

The initial compromise was detected around 08:00 UTC on March 23 when Docker and Aqua Security worked together to remove the affected versions. However, a second wave hit at 03:26 UTC on March 20, where attackers redirected the latest tag back to compromised content.

It’s crucial for users who downloaded any of these images during this period to take immediate action by ceasing use and rotating their credentials as soon as possible. This incident underscores the importance of regular security audits in CI/CD pipelines and emphasizes the need for vigilance when using third-party tools, especially those with wide distribution.

What’s Next?

Aqua Security has issued a statement urging users to update to version 0.71 or later, which includes patches addressing this vulnerability. They also recommend conducting thorough security reviews of all systems that may have been impacted by the compromised images.