Github Actions Supply Chain Attacks

31/03/2025 42 min Temporada 2025 Episodio 324

Listen "Github Actions Supply Chain Attacks"

Descargar episodio Ver en sitio original

Episode Synopsis

This week, we discuss a recent cascading supply chain attack involving multiple Github actions workflows that nearly succeeded in compromising a popular Coinbase application. Before that, we discuss a novel way to download malware onto an endpoint by abusing a web browser's caching feature. Additionally, we cover an FBI alert on file converter malware scams.

More episodes of the podcast The 443 - Security Simplified

WatchGuard's 2026 Cybersecurity Predictions - The 443 Podcast Episode 351 08/12/2025

OWASP Top 10 2025 Edition - The 443 Podcast - Episode 350 24/11/2025

2025 Security Predictions Recap - 443 Podcast - Episode 349 18/11/2025

October Ransomware Update - The 443 Podcast - Episode 348 30/10/2025

What's Going On at Salesforce? - The 443 Podcast - Episode 347 13/10/2025

An AI/ML Deep Dive with Luke Wolcott - The 443 Podcast - Episode 346 06/10/2025

How GitHub Plans to Fix the Supply Chain - The 443 Podcast - Episode 345 29/09/2025

One Token to Rule Them All - The 443 Podcast - Episode 344 22/09/2025

Should Microsoft Be More Accountable for Security? 15/09/2025

Does Security Training Work? 08/09/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

Github Actions Supply Chain Attacks

Listen "Github Actions Supply Chain Attacks"

Episode Synopsis

More episodes of the podcast The 443 - Security Simplified

Email on your own domain, luxury or need?

Digital Natives: Children of today, Technologists of Tomorrow

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Internet Predators on the prowl

Gray Hat Hacking, those with ambiguous ethics…

Dot COM: The Internet’s dominant TLD