Two researchers from the University of Cambridge have discovered a vulnerability that affects most computer code compilers and many software development environments, according to a new research paper. The bug could cause a SolarWinds-like open-source supply chain attack scenario, they say.
https://www.inforisktoday.co.uk/trojan-source-invisible-vulnerabilities-in-most-code-a-17833