Microsoft warns enterprises of new 'dependency confusion' attack technique

New "dependency confusion" technique, also known as a "substitution attack," allows threat actors to sneak malicious code inside private code repositories by registering internal library names on public package indexes.

>>More