Attackers Aim at Software Supply Chain with Package Typosquatting

21 April 2020

Developers that make a simple typing mistake could find their systems compromised by malware in the latest attack on the software supply chain, say researchers at ReversingLabs, a software analysis platform provider. The researchers analyzed the package repository for the Ruby language looking for code packages, known as Ruby Gems, submitted to the repository with names similar to existing baseline packages.

Read full article on Dark Reading

Date:

21 April 2020

Categorie(s):

NEWS

Tag(s):

Packages, Software Supply Chain, Typosquatting

How to revamp your cybersecurity in the middle of the chaos18 May 2024
Leveling the cybersecurity playing field18 May 2024
Automated pentesting in the cloud18 May 2024
Hardware cybersecurity leader, Flexxon, introduces Server Defender18 May 2024
Aussie cops probe MediSecure’s ‘large-scale ransomware data breach’18 May 2024