New Open-source Dependency Confusion Vulnerability Threatens Software Supply Chain by Contrast Security

published on 2021-02-23T15:41:14Z

New Open-source Dependency Confusion Vulnerability Threatens Software Supply Chain Newly discovered dependency confusion vulnerability found in 35 enterprises—and counting—and threatens software supply chain. Bad actors could inject malicious code without any victim action by redirecting open-source updates to compromised open-source code repos. In this Inside AppSec Podcast, Contrast Security's Director of Security Research discusses why dependency confusion poses a serious threat and how they can detect and remediate the vulnerability before bad actors exploit it.

Genre: Technology

Your current browser isn't compatible with SoundCloud.
Please download one of our supported browsers. Need help?

Chrome | Firefox | Safari | Edge

Sorry! Something went wrong

Is your network connection unstable or browser outdated?

I need help