Dependency Confusion attack
Wondering what is this kind of attack. Go through the amazing writeup of this bug discovered by Alex Birsan
Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies
The Story of a Novel Supply Chain Attack
And for your understanding in simple and common language you can browse the below link .