Posted incloudsecurity
Dependency Confusion technique
Security researchers has detailed a supply chain attack technique called Dependency Confusion or a Substitution Attack, which can attack hybrid package manager configurations inside large corporations. Poisoning process The Dependency Confusion technique…
