Blog | ReversingLabs | npm security

npm security

February 9, 2023

Open-source repository malware sows Havoc

Aabquerys is a malicious npm package discovered typosquatting on a legitimate npm module that downloads malicious components, ReversingLabs discovered.

September 23, 2022

Threat analysis: Malicious npm package mimics Material Tailwind CSS tool

ReversingLabs has discovered a malicious npm package disguised as the software tool Material Tailwind. Here's an in-depth look at our discovery — and threat analysis. (Updated with MachO executable information.)

September 14, 2022

OpenSSF's npm best practices: A solid first step for supply chain security — but trust issues remain

Here's what you need to know about the new OpenSSF npm security best practices.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

npm security

Open-source repository malware sows Havoc

Threat analysis: Malicious npm package mimics Material Tailwind CSS tool

OpenSSF's npm best practices: A solid first step for supply chain security — but trust issues remain

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

npm security

Open-source repository malware sows Havoc

Threat analysis: Malicious npm package mimics Material Tailwind CSS tool

OpenSSF's npm best practices: A solid first step for supply chain security — but trust issues remain

Topics

Follow us

Subscribe

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs