all InfoSec news
Google’s Open-source Tool Bazel Flaw Let Attackers Insert Malicious Code
Cyber Security News cybersecuritynews.com
Bazel, an open-source software used for automation of building and testing, has been discovered with a critical supply chain vulnerability that could allow a threat actor to inject malicious code into the Bazel codebase, create a backdoor, and affect the production environment of anyone that uses Bazel. Researchers stated that millions of projects that use […]
The post Google’s Open-source Tool Bazel Flaw Let Attackers Insert Malicious Code appeared first on Cyber Security News.
actor attackers automation backdoor building code codebase critical cyber security environment flaw google inject malicious malware open-source software production researchers software supply supply chain supply chain vulnerability testing threat threat actor tool vulnerability