In The News | ReversingLabs

August 14, 2023

Cybersecurity Insiders: Supply chain attacks demand a 3rd party risk re-think

Looked at from one angle, the recent attack on JumpCloud, a cloud-based identity and access management provider, was unsurprising.

August 6, 2023

Hack Read: VMCONNECT: Malicious PyPI Package Mimicking Common Python Tools

Threat researchers at ReversingLabs, a software supply chain security and malware analysis platform, have discovered a malicious new PyPI package dubbed VMConnect on the Python Package Index (PyPI) repository.

August 4, 2023

The Hacker News: Malicious npm Packages Found Exfiltrating Sensitive Data from Developers

Cybersecurity researchers have discovered a new bunch of malicious packages on the npm package registry that are designed to exfiltrate sensitive developer information.

August 4, 2023

Infosecurity Magazine: VMConnect: Python PyPI Threat Imitates Popular Modules

A new malicious campaign has been found on the Python Package Index (PyPI) open-source repository involving 24 malicious packages that closely imitate three popular open-source tools: vConnector, eth-tester and databases.

July 11, 2023

Forbes: The Future Of Software Supply Chain Security? It’s Already Here

Cofounder and CEO of ReversingLabs, which helps cybersecurity teams gain insights into malware-infected files and objects.

July 6, 2023

CSO: Malicious campaign uses npm packages to support phishing attacks

This newly discovered "dual use" campaign enables software supply chain compromise as well as phishing.