A Q&A with NCC Group’s Viktor Gazdag ahead of a Black Hat USA session on CI/CD pipeline risks reveals a scary, and expanding, campaign vector for software supply chain attacks and RCE.

from Dark Reading https://ift.tt/kGSUtEd
via IFTTT