Feb. 6, 2024, 2:17 p.m. | Eswar

Cyber Security News cybersecuritynews.com

Bazel, an open-source software used for automation of building and testing, has been discovered with a critical supply chain vulnerability that could allow a threat actor to inject malicious code into the Bazel codebase, create a backdoor, and affect the production environment of anyone that uses Bazel. Researchers stated that millions of projects that use […]


The post Google’s Open-source Tool Bazel Flaw Let Attackers Insert Malicious Code appeared first on Cyber Security News.

actor attackers automation backdoor building code codebase critical cyber security environment flaw google inject malicious malware open-source software production researchers software supply supply chain supply chain vulnerability testing threat threat actor tool vulnerability

Director of the Air Force Cyber Technical Center of Excellence (CyTCoE)

@ Air Force Institute of Technology | Dayton, OH, USA

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

Business Information Security Officer

@ PwC | Auckland - PwC Tower

CI/CD DevSecOps Developer (Remote)

@ NTT DATA | Halifax, NS, CA

Security Operations Engineer

@ Collectors | Santa Ana, California, United States

Security Engineer

@ Wizeline | Colombia