cross-posted from: https://infosec.pub/post/11143989
Fresh Social Engineering Attacks Resemble Tactics Used Against XZ Utils MaintainerMajor open-source software projects are warning that more pieces of code than XZ Utils may have been backdoored by attackers, based on ongoing supply-chain attack attempts that have targeted “popular JavaScript projects,” apparently seeking to trick them into sharing code maintainer rights.
You must log in or # to comment.