Novel CI/CD attack could prompt widespread supply chain compromise

Significant supply chain compromise could be conducted against major IT and cryptocurrency organizations through a novel continuous integration/continuous delivery attack technique exploiting thousands of public GitHub repositories with malicious code injection issues, SecurityWeek reports.

attack code code injection compromise continuous continuous delivery continuous integration cryptocurrency delivery exploiting github github repositories injection integration major malicious novel organizations prompt public reports repositories supply supply chain supply chain compromise threat intelligence