Source |
ZD Net |
Identifiant |
2322412 |
Date de publication |
2021-02-10 05:40:02 (vue: 2021-02-10 06:05:50) |
Titre |
Microsoft warns enterprises of new \'dependency confusion\' attack technique |
Texte |
New "dependency confusion" technique, also known as a "substitution attack," allows threat actors to sneak malicious code inside private code repositories by registering internal library names on public package indexes. |
Envoyé |
Oui |
Condensat |
actors allows also attack code confusion dependency enterprises indexes inside internal known library malicious microsoft names new package private public registering repositories sneak substitution technique threat warns |
Tags |
Threat
|
Stories |
|
Notes |
|
Move |
|