Rise of Next-Gen Software Supply Chain Attacks
Legacy software supply chain "exploits", such as Struts incident at Equifax, prey on publicly disclosed open source vulnerabilities that are left unpatched in the wild. Conversely, next-generation software supply chain "attacks" are far more sinister because bad actors are no longer waiting for public vulnerability disclosures. Instead, they are actively injecting malicious code into open source projects that feed the global supply chain.
Join in this session led by Ax Sharma, Senior Security Researcher, Sonatype to:
- Understand software supply chain attacks and their impact on the open-source ecosystem
- Deep dive into prominent real-world examples of typosquatting and brandjacking malware
- Learn how your organization can proactively protect itself against software supply chain attacks