Security Feed
  1. Archives

Feb 16 2022 Poisoned pipelines: Security researcher explores attack methods in CI environments

Source

Attack vector abuses permissions to force CI pipelines to execute arbitrary commands [...]

Posted by The Daily Swig on Wed 16 February 2022 in The Daily Swig.

Categories

  1. 12
  2. Ars Technica
  3. AWS Security
  4. BleepingComputer
  5. Brian Krebs
  6. Bruce Schneier
  7. GCP Security
  8. Google Project Zero
  9. Mozilla Security
  10. The Daily Swig
  11. The Guardian
  12. The Register
  13. Threatpost

Tag cloud

  • Security
  • Uncategorized
  • Web Security
  • malware
  • vulnerabilities
  • Security, Identity, & Compliance
  • Microsoft
  • Security Blog
  • Biz & IT
  • privacy
  • hacks
  • Identity & Security
  • Google
  • Government
  • Foundational (100)
  • Announcements
  • Security & Identity
  • Cloud security
  • CryptoCurrency
  • hacking
  • Data and computer security
  • Technology
  • Intermediate (200)
  • A Little Sunshine
  • Technical How-to

Security Feed. Powered by Pelican and m.css. Code is available on GitLab.