Submit #856013: Node.js @svgdotjs/svg.js 3.2.5 Prototype Pollution [Accepted]
Submit #856013 / VDB-378244
In this Help Net Security video, Chris Boehm, Field CTO, Zero Networks, breaks down how a vendor breach can become your breach. He explains that attackers now target the subcontractors behind your trusted vendors. A compromised credential at a company you have never heard of can open access into your systems, because your vendor’s vendor holds keys you never vetted. Boehm compares a stolen access token to a badge: whoever holds it gets waved through, … More →
The post Your vendor’s vendor might be the real breach risk appeared first on Help Net Security.