Track session
08:30
-
09:20
June 08, 2022
Session Code: SBX2-WIL1
Classification: general - technical
Erez Yalon | Head of Security Research, Checkmarx
Jossef Harush | Director of Engineering, Supply Chain Security, Checkmarx
While commercial supply chain attacks are becoming more manageable, security teams have a much harder time with open-source software supply chains. This session will provide an attacker's perspective of open-source flows and flaws and dive into several unique supply chain weaknesses. Demos will show the ease of conducting different attacks and provide a perspective on defeating them as defenders.