A OX Security report found applications with more than 1 billion users are using dependencies which are vulnerable to dependency confusion attacks.