Security researchers recently uncovered a critical vulnerability in Node.js’s continuous integration infrastructure that allowed attackers to execute malicious code on internal Jenkins agents, potentially leading to a devastating supply chain attack. When multiple DevOps platforms work together to execute pipelines for a single GitHub repository, it begs the question: Do these platforms get along? In […]
The post Hijacking NodeJS’ Jenkins Agents For Remote Code Execution appeared first on Cyber Security News.
This article has been indexed from Cyber Security News