all InfoSec news
Developer account body snatchers pose risks to the software supply chain
Oct. 4, 2022, 12:51 p.m. | Jaeson Schultz (noreply@blogger.com)
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
By Jaeson Schultz.
- Over the past several years, high-profile software supply chain attacks have increased in frequency. These attacks can be difficult to detect and source code repositories became a key focus of this research.
- Developer account takeovers present a substantial risk to the software supply chain because attackers who successfully compromise a developer account could conceal malicious code in software packages used by others.
- Talos analyzed several of the major software repositories to assess the level of developer …
account developer on the radar risks software software supply chain supply supply chain
More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
The private sector probably isn’t coming to save the NVD
2 days, 22 hours ago |
blog.talosintelligence.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Network Security Engineer
@ Meta | Menlo Park, CA | Remote, US
Security Engineer, Investigations - i3
@ Meta | Washington, DC
Threat Investigator- Security Analyst
@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC
Security Operations Engineer II
@ Microsoft | Redmond, Washington, United States
Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas
@ Goldman Sachs | Dallas, Texas, United States