Get a Pentest and security assessment of your IT network.

Microsoft’s Halo dev site breached using dependency hijacking

April 18, 2022

A Microsoft server has been successfully hit by a dependency hijacking attack. The attack exploits a weakness called “dependency confusion”” in open-source repository managers when it comes to retrieving dependencies specified for a software package. Attackers inject malicious code into an automated supply-chain attack in automated supply chain attacks. Microsoft has been identified as the source of the attack

Source: security

Microsoft’s Halo dev site breached using dependency hijacking

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

Zero-Day Vulnerabilities: User Defence Guide

YubiKey Security: Initial Setup with Yubi Cloud

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text

Microsoft’s Halo dev site breached using dependency hijacking

Related posts

Something Fresh

What People Reading

Categories

Partners

Just add here your partners image or promo text