In The News

July 12, 2022

Silicon Angle: Supply chain attack uses malicious NPM packages to steal data

The packages are designed to steal from data from individuals using applications or websites where the malicious packages have been deployed.
July 12, 2022

Dark Reading: Supply Chain Attack Deploys Hundreds of Malicious NPM Modules to Steal Data

A widespread campaign uses more than 24 malicious NPM packages loaded with JavaScript obfuscators to steal form data from multiple sites and apps
July 11, 2022

The Hacker News: Researchers Uncover Malicious NPM Packages Stealing Data from Apps and Web Forms

Attackers impersonated high-traffic NPM modules like umbrellajs and packages published by
July 11, 2022

Decipher: Dozens of Malicious Data-Harvesting NPM Packages Found

Researchers have exposed dozens of malicious npm packages that harvest sensitive data from end users of various applications and websites.
July 11, 2022

BleepingComputer: NPM supply-chain attack impacts hundreds of websites and apps

ReversingLabs discovered the threat actors behind IconBurst
July 4, 2022

Dark Reading: Gathering Momentum - 3 Steps Forward to Expand SBoM Use

A recent study by ReversingLabs, conducted by Dimensional Research, found that less than a third of companies today use SBoMs