https://www.youtube.com/watch?v=7pMrssIrKcY&ab_channel=GamersNexus
Disgraceful corporate behavior, I am glad that channels like Gamers Nexus have the clout to call this out.
The Chinese military will get the cards through fronts or 3’rd parties but they will get them.
The only thing this does is short term stunt Chinese enterprise and business from competing against other companies, and remove the additional supply...
This wasn't some seat of your pants attack, this was well orchestrated by someone quite knowledgeable regarding SSH & systemd dependencies - certain technical defenses were even disabled by the insertion of a single dot in an autoconf file. As...
^^ This, this was a long play planned out attack. Now you wonder how many other repo's could be comprimised by the same team that did this (not likely a single person at all, but a nation state group)
Lets not forget the point I highlighted earlier:
There's little doubt the ability to readily go back through commits and audit the code is the larger part of what saved the day in this example. Without that ability, the individual that found...