‘Trojan Source’ Flaw Exposes Apps to Covert Poisoning

Cambridge University researchers Nicholas Boucher and Ross Anderson have
recently identified a critical vulnerability impacting the way source code is
compiled.

The flaw, dubbed “Trojan Source [https://trojansource.codes/trojan-source.pdf],”
could let attackers inject malicious code into applications in a way that is
difficult to detect during typical security reviews.

Unicode Bidi Algorithm Affected by New Vulnerability
It involves manipulating the Unicode bidirectional (Bidi) algorithm to ma