Karlo Zanki

Reverse Engineer at ReversingLabs

Recent Posts from Karlo Zanki

Shai-hulud supply chain attack spreads token-stealing malware on npm

RL researchers have detected the first self-replicating worm that compromised npm packages with cloud token-stealing malware.

Learn More about Shai-hulud supply chain attack spreads token-stealing malware on npm

Shai-hulud supply chain attack spreads token-stealing malware on npm

Compromised npm package threatens developer projects

The eslint-config-prettier package exposed more than 10,000 dependent projects. The incident highlights the growing risks in automated dependency updating.

Learn More about Compromised npm package threatens developer projects

Compromised npm package threatens developer projects

Malicious attack method on hosted ML models now targets PyPI

RL researchers detected a new malicious campaign that exploits the Pickle file format on the Python Package Index.

Learn More about Malicious attack method on hosted ML models now targets PyPI

Malicious attack method on hosted ML models now targets PyPI