Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines

Written By Auto Tech Friday, 20 May 2022 Add Comment

May 20, 2022 at 04:11PM

A case of software supply chain attack has been observed in the Rust programming language's crate registry that leveraged typosquatting techniques to publish a rogue library containing malware. Cybersecurity firm SentinelOne dubbed the attack "CrateDepression." Typosquatting attacks take place when an adversary mimics the name of a popular package on a public registry in hopes that developers

from The Hacker News https://ift.tt/3yhDCxp

OBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade Detection
GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
Future-Proofing Business Continuity: BCDR Trends and Challenges for 2025

{ads}

Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines

Related

0 Response to "Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads

{ads}

Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines

Related

Related Posts

0 Response to "Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads