CocoaPods flaws highlight growing supply chain risks
Briefly

from Developer Tech News8 months ago
Unauthorised ownership of orphaned pods allows malicious code injection into widely-used packages, impacting millions of Apple devices.
Developer Tech Newshttps://www.developer-tech.com/news/2024/jul/02/cocoapods-flaws-highlight-growing-supply-chain-risks/
Remote code execution vulnerability enables attackers to execute arbitrary code on the server managing package distribution.
Developer Tech Newshttps://www.developer-tech.com/news/2024/jul/02/cocoapods-flaws-highlight-growing-supply-chain-risks/
Zero-click account takeover vulnerability exposes Apple devices to unauthorized access through developer accounts.
Developer Tech Newshttps://www.developer-tech.com/news/2024/jul/02/cocoapods-flaws-highlight-growing-supply-chain-risks/
Read at Developer Tech News
#cocoapods #swift #objective-c #supply-chain-attacks #vulnerabilities
[
|
]