
Typosquatting and software supply chain security
In this lesson, Matt dives into typosquatting, an attack in which malicious actors will copy and slightly misspell the names of legitimate software packages. As a result of the speed of DevOps and human error, these typosquatted packages get downloaded, causing software supply chain attacks.
Keep learning
• Related ReversingGlass: DNA of an app• Special: The State of Supply Chain Security
• See the Forrester SCA Landscape Report
