- Top Organizations On GitHub Vulnerable To Dependency Confusion Attacks - RedHunt Labs https://redhuntlabs.com/blog/top-organizations-on-github-vulnerable-to-dependency-confusion-attack.html 6 comments netsec
- Single Author Uploaded 168 Packages to npm as Part of a Massive Dependency Confusion Attack https://www.mend.io/resources/blog/single-author-uploaded-168-packages-to-npm-as-part-of-a-massive-dependency-confusion-attack/ 9 comments javascript
- Snyk finds 200+ malicious npm packages, including Cobalt Strike dependency confusion attacks https://snyk.io/blog/snyk-200-malicious-npm-packages-cobalt-strike-dependency-confusion-attacks/ 2 comments node
- Dependency Confusion Supply Chain Attack on pub.dev https://pub.dev 11 comments dartlang
- How would CPAN fare under a dependency confusion attack, especially using a system like Pinto? https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610 4 comments perl