dependency confusion Latest News and Updates

Tech

Backdoor in public repository used new form of attack to target big firms

Enlarge (credit: Getty Images) A backdoor that researchers found hiding inside open source code targeting four German companies was the work of a professional penetration tester. The tester was checking clients’ resilience against a new class of attacks that exploits public repositories used by millions of software projects worldwide. But it could have been bad. […]

Tech

A new type of supply-chain attack with serious consequences is flourishing

Enlarge (credit: Getty Images) A new type of supply chain attack unveiled last month is targeting more and more companies, with new rounds this week taking aim at Microsoft, Amazon, Slack, Lyft, Zillow, and an unknown number of others. In weeks past, Apple, Microsoft, Tesla, and 32 other companies were targeted by a similar attack […]

Tag: dependency confusion

Backdoor in public repository used new form of attack to target big firms

A new type of supply-chain attack with serious consequences is flourishing

BREAKING NEWS

Intel squeezes desktop Alder Lake CPUs into laptops with Core HX-series chips

AMD Ryzen 6000 gets DisplayPort 2.0-certified, product testing ramps up

MoveOn Executive Director Rahna Epting on WHIPA Vote

The killing of Palestinian-American journalist Shireen Abu Akleh, explained

Info

Unknown Feed

Contact us