Focused open source attacks. Smells like a corporate sponsored action. - AOS for Lemmy.World - A generic Lemmy server for everyone to use.

1082

Focused open source attacks. Smells like a corporate sponsored action.

27d 4h ago by discuss.online/u/Zephorah in technology from www.wired.com

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

I don't know that it's corporate sponsored so much as corporate subsidised: via LLMs that cost more to operate than people pay to use them...

Also probably a lot of well intentioned AI code introduced vulnerabilities and bugs, with each bug providing opportunities for a new supply chain attack in the form of a fix...

The only sponsorship is from corps constantly paying data ransoms