Apache Cordova App Harness Targeted in Dependency Confusion Attack

3 months ago [email protected] (The Hacker News)
Apache Cordova App Harness Targeted in Dependency Confusion Attack


Researchers have identified a dependency confusion vulnerability impacting an archived Apache project called Cordova App Harness.
Dependency confusion attacks take place owing to the fact that package managers check the public repositories before private registries, thus allowing a threat actor to publish a malicious package with the same name to a public package repository.
This&

The post “Apache Cordova App Harness Targeted in Dependency Confusion Attack” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: ,

More Stories

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems

5 hours ago [email protected] (The Hacker News)

Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials

5 hours ago [email protected] (The Hacker News)

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

22 hours ago [email protected] (The Hacker News)

Offensive AI: The Sine Qua Non of Cybersecurity

24 hours ago [email protected] (The Hacker News)

U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals

1 day ago [email protected] (The Hacker News)

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

1 day ago [email protected] (The Hacker News)