Let's enable MFA for all Ruby gems
ATT&CK techniques detected
T1195.001Compromise Software Dependencies and Development Tools
98%
“let ' s enable mfa for all ruby gems a few weeks ago, axios, the popular http client for javascript, suffered a supply chain attack on npm. an attacker compromised the lead maintainer ’ s npm account through social engineering and published two backdoored versions that delivered …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1587Develop Capabilities
35%
“let ' s enable mfa for all ruby gems a few weeks ago, axios, the popular http client for javascript, suffered a supply chain attack on npm. an attacker compromised the lead maintainer ’ s npm account through social engineering and published two backdoored versions that delivered …”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…