cybersecurity
Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks
Source:
feeds.feedburner.com 1 min read
Share
You are reading a summary. The full content is hosted on feeds.feedburner.com.
Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, and
Read the full article on the original website
External link to feeds.feedburner.com
Related Articles
cybersecurity
JadePuffer ransomware used AI agent to automate entire attack
1 min read •
cybersecurity
U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
1 min read •
cybersecurity
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
1 min read •
