Showing only posts tagged dependency confusion. Show all posts.

A new type of supply-chain attack with serious consequences is flourishing

Source

Enlarge (credit: Przemyslaw Klos / EyeEm / Getty Images ) A new type of supply chain attack unveiled last month is targeting more and more companies, with new rounds this week taking aim at Microsoft, Amazon, Slack, Lyft, Zillow, and an unknown number of others. In weeks past, Apple, Microsoft, Tesla, and …