all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Google supply chain bug patched in code-testing tool Bazel

Add to bookmarks
Feb. 3, 2024, 1 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

A GitHub Actions workflow could have been used for a command injection vulnerability in Bazel, which had the potential for threat actors to add malicious code into the production environment for projects using the Google open-source product.


Article Link: Google supply chain bug patched in code-testing tool Bazel | SC Media


1 post - 1 participant


Read full topic

actions article bug code command command injection environment github github actions google injection link malicious media product production projects supply supply chain testing testing tool threat threat actors tool vulnerability

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Wireshark 4.2.5 Released, (Sat, May 18th) 9 hours ago | malware.news
article bugs center cve +13
The who, where, and how of APT attacks – Week in security with Tony Anscombe 20 hours ago | malware.news
apt article attacks campaigns +11
Leveling the cybersecurity playing field 1 day, 1 hour ago | malware.news
article blumira cybersecurity entry +4
Hardware cybersecurity leader, Flexxon, introduces Server Defender 1 day, 1 hour ago | malware.news
advanced article cybersecurity defender +8
Automated pentesting in the cloud 1 day, 1 hour ago | malware.news
article automated challenge cloud +10
How to revamp your cybersecurity in the middle of the chaos 1 day, 1 hour ago | malware.news
article attackers chaos cybersecurity +8
6K-plus AI models may be affected by critical RCE vulnerability 1 day, 2 hours ago | malware.news
ai models article attacks critical +14
Zscaler annual phishing report finds a near 60% increase in phishing attacks in 2023 1 day, 3 hours ago | malware.news
article attacks link media +6
Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387 1 day, 5 hours ago | malware.news
amp article cisa deepfakes +8

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com

Lead Security Specialist

@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
View on infosec-jobs.com

Consultant SOC / CERT H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com