Threat actors may use exploits in the PowerShell Gallery to launch supply chain attacks against registry users.
Researchers from Aqua security claimed in a report shared with The Hacker News that these issues make typosquatting attacks in this registry unavoidable and make it very difficult for users to determine the genuine owner of a package.
PowerShell Gallery, which is maintained by Microsoft, serves as a unified location for exchanging and acquiring PowerShell code, including scripts, modules, and Desired State Configuration (DSC) resources. The registry offers 244,615 total packages read more Experts Uncover Weaknesses in PowerShell Gallery Enabling Supply Chain Attacks.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.