all InfoSec news
After XZ Utils, More Open-Source Maintainers Under Attack
April 16, 2024, 7:10 p.m. |
BankInfoSecurity.com RSS Syndication www.bankinfosecurity.com
Major open-source software projects are warning that more pieces of code than XZ Utils may have been backdoored by attackers, based on ongoing supply-chain attack attempts that have targeted "popular JavaScript projects," apparently seeking to trick them into sharing code maintainer rights.
attack attackers attacks code engineering javascript maintainer maintainers may open-source software popular projects rights sharing social social engineering social engineering attacks software supply tactics trick under warning xz utils
More from www.bankinfosecurity.com / BankInfoSecurity.com RSS Syndication
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer
@ Commit | San Francisco
Trainee (m/w/d) Security Engineering CTO Taskforce Team
@ CHECK24 | Berlin, Germany
Security Engineer
@ EY | Nicosia, CY, 1087
Information System Security Officer (ISSO) Level 3-COMM Job#455
@ Allen Integrated Solutions | Chantilly, Virginia, United States
Application Security Engineer
@ Wise | London, United Kingdom