InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...
CRN

Wiz: Misconfigured AWS System Could Have Enabled Largest-Ever Supply Chain Attack

A misconfigured AWS system that was remediated in August—averting a potentially massive and unprecedented software supply ...