LXer: Millions of Apple Applications Were Vulnerable to CocoaPods Supply Chain Attack
by LXer from LinuxQuestions.org on (#6P01D)
Published at LXer:
The vulnerabilities have since been patched, but had quietly persisted since the CocoaPods migration in 2014. Many macOS and iOS applications were open to a vulnerability in CocoaPods, an open-source dependency manager, E.V.A. Information Security revealed on July 1. The vulnerability has been patched since EVA first discovered it, and no attacks have occurred that are conclusively related to it.
Read More...
The vulnerabilities have since been patched, but had quietly persisted since the CocoaPods migration in 2014. Many macOS and iOS applications were open to a vulnerability in CocoaPods, an open-source dependency manager, E.V.A. Information Security revealed on July 1. The vulnerability has been patched since EVA first discovered it, and no attacks have occurred that are conclusively related to it.
Read More...