The explosion of open-source projects in recent years has allowed organizations to build ever more complex architectures using their pick of components developed by specialists or “the community”. Unfortunately, it has also given the cybercriminal community new routes to break into systems, either by exploiting existing vulnerabilities in the software supply chain or by surreptitiously inserting their own.

Read full article on The Register