Source |
The Hacker News |
Identifiant |
7753697 |
Date de publication |
2022-10-31 14:47:00 (vue: 2022-10-31 12:05:47) |
Titre |
GitHub Repojacking Bug Could\'ve Allowed Attackers to Takeover Other Users\' Repositories |
Texte |
Cloud-based repository hosting service GitHub has addressed a high-severity security flaw that could have been exploited to create malicious repositories and mount supply chain attacks.
The RepoJacking technique, disclosed by Checkmarx, entails a bypass of a protection mechanism called popular repository namespace retirement, which aims to prevent developers from pulling unsafe repositories with |
Envoyé |
Oui |
Condensat |
addressed aims allowed attackers attacks based been bug bypass called popular chain checkmarx cloud could create developers entails exploited flaw from github has have high hosting malicious mechanism mount namespace other prevent protection pulling repojacking repositories repository retirement security service severity supply takeover technique unsafe users which disclosed by |
Tags |
|
Stories |
|
Notes |
|
Move |
|