Developer in a digital crosshair, 2023 edition

Author: Mateusz Olejarka

Recent years show a significant increase in attacks against libraries, tools, and infrastructure used in application development, as well as directly against developers and software companies. From fake libraries and malicious changes to popular libraries or programming languages to vulnerabilities in CI/CD infrastructure components.
During the presentation, you will discover a handful of interesting, fresh examples and attack techniques and, perhaps most importantly, learn how to work safely as a programmer. You will find out about typosquatting, dependency confusion, protestware and discover stories of attacks on PHP, Codecov, Homebrew, npm, Ruby Gems, or GitHub.

Presented at: 4Developers

Previous editions

Here, you can find more recent versions of the presentation “Developer in a digital crosshair”, which have been presented at different conferences.

Year 2022

  1. Oh My H@ck! – Developer in a digital crosshair
  2. No cON Name – Developer in a digital crosshair
  3. Confidence – Developer in a digital crosshair

Mateusz Olejarka
Mateusz Olejarka Principal IT Security Consultant
Head of Web Security