Author: Mateusz Olejarka
Recent years show a significant increase in attacks against libraries, tools, and infrastructure used in application development, as well as directly against developers and software companies. From fake libraries and malicious changes to popular libraries or programming languages to vulnerabilities in CI/CD infrastructure components.
During the presentation, you will discover a handful of interesting, fresh examples and attack techniques and, perhaps most importantly, learn how to work safely as a programmer. You will find out about typosquatting, dependency confusion, protestware and discover stories of attacks on PHP, Codecov, Homebrew, npm, Ruby Gems, or GitHub.
Presented at: 4Developers
Here, you can find more recent versions of the presentation “Developer in a digital crosshair”, which have been presented at different conferences.
- Oh My H@ck! – Developer in a digital crosshair
- No cON Name – Developer in a digital crosshair
- Confidence – Developer in a digital crosshair
Head of Web Security