Tuesday, November 1, 2022

GitHub Repojacking Bug Could've Allowed Attackers to Takeover Other Users' Repositories

Cloud-based repository hosting service GitHub has addressed a high-severity security flaw that could have been exploited to create malicious repositories and mount supply chain attacks. The RepoJacking technique, disclosed by Checkmarx, entails a bypass of a protection mechanism called popular repository namespace retirement, which aims to prevent developers from pulling unsafe repositories with
http://dlvr.it/Sc2FyB

No comments:

Post a Comment

China APT Stole Geopolitical Secrets From Middle East, Africa & Asia - Dark Reading

China APT Stole Geopolitical Secrets From Middle East, Africa & Asia  Dark Reading http://dlvr.it/T7NsNm