all InfoSec news
Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack
Jan. 8, 2024, 1:09 p.m. | Ionut Arghire
SecurityWeek RSS Feed www.securityweek.com
Self-hosted GitHub Actions runners could allow attackers to inject malicious code into repositories, leading to supply chain attacks.
The post Major IT, Crypto Firms Exposed to Supply Chain Compromise via New Class of CI/CD Attack appeared first on SecurityWeek.
actions attack attackers attacks cd ci class code compromise crypto exposed github github actions inject major malicious repositories runners supply supply chain supply chain attacks supply chain compromise supply chain security
More from www.securityweek.com / SecurityWeek RSS Feed
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC
@ SAP | Dublin 24, IE, D24WA02
Product Security Response Engineer
@ Intel | CRI - Belen, Heredia
Application Security Architect
@ Uni Systems | Brussels, Brussels, Belgium
Sr Product Security Engineer
@ ServiceNow | Hyderabad, India
Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)
@ FiscalNote | United Kingdom (UK)