Revival Hijack: New Supply Chain Attack Targets PyPI Packages
The JFrog team has uncovered a new method of supply chain attacks that was employed against PyPI packages. The technique, dubbed “Revival Hijack,” exploits the ability to re-register deleted packages. The attack occurs when...