pull down to refresh

137 sats \ 0 replies \ @ek 21 Mar \ on: GitHub suffers a cascading supply chain attack compromising CI/CD secrets security
The attack methodology involved a particularly sophisticated approach. Attackers inserted a base64-encoded payload into an install script
I don’t think obfuscating malicious code by encoding it as base64 is "particularly sophisticated". They mentioned that in my graduate program.
write
preview