all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Dependency confusion vulnerability impacts archived Apache project

Add to bookmarks
April 24, 2024, 3:33 p.m. | SC Staff

SC Magazine feed for Risk Management www.scmagazine.com

Threat actors could potentially launch a software supply chain attack by exploiting a dependency confusion flaw impacting the archived Apache Cordova App Harness project, which had been discontinued five years ago, reports The Hacker News.

apache app attack dependency dependency confusion exploiting flaw hacker harness launch network security project reports software software supply chain software supply chain attack supply supply chain supply chain attack the hacker news threat threat actors vulnerability vulnerability management

Visit resource

More from www.scmagazine.com / SC Magazine feed for Risk Management

FBI warns of email spoofing by North Korean threat actor Kimsuky 2 days, 6 hours ago | www.scmagazine.com
actor dmarc domains email +15
Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383 2 days, 12 hours ago | www.scmagazine.com
breach cisco credit credit monitoring +7
Old vulnerable D-Link routers subjected to novel Goldoon botnet attacks 2 days, 14 hours ago | www.scmagazine.com
april attacks botnet bug +14
Note to investors and security pros: drive innovation by going on the offensive 2 days, 17 hours ago | www.scmagazine.com
cybersecurity drive innovation investments +8
‘Junk gun’ ransomware: Peashooters can still pack a punch 2 days, 23 hours ago | www.scmagazine.com
actor businesses can career +12
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360 3 days, 9 hours ago | www.scmagazine.com
breach incident incident response preparation +2
We Need an Updated Strategy to Secure Identities 3 days, 10 hours ago | www.scmagazine.com
control identities identity security +2
Pro-Russia hackers target OT weaknesses in critical infrastructure 3 days, 13 hours ago | www.scmagazine.com
american breaches critical critical infrastructure +20
US jails REvil ransomware affiliate for 2021 Kaseya attack 3 days, 14 hours ago | www.scmagazine.com
affiliate attack cnn compromised +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com
View more jobs