Software supply chain attacks are getting easier | allinfosecnews.com

Jan. 24, 2024, 4 a.m. | Help Net Security

Help Net Security www.helpnetsecurity.com

ReversingLabs identified close to 11,200 unique malicious packages across three major open-source software platforms in 2023: npm, PyPI, and RubyGems. These findings mark an astounding 1,300% increase in malicious packages from 2020 and an increase of 28% over 2022 when a little more than 8,700 malicious packages were detected. “Over the years, we’ve closely monitored the increase of software supply chain exposures and attacks. This new report reflects the proliferation of malware across open-source and … More →

The post …

attacks cybercrime cybersecurity don't miss easier findings major malicious malicious packages mark npm open source open-source software packages platforms pypi report reversinglabs rubygems software software supply chain software supply chain attacks supply supply chain supply chain attacks survey

More from www.helpnetsecurity.com / Help Net Security

Trellix Wise automates security workflows with AI, streamlining threat detection and remediation an hour ago | www.helpnetsecurity.com

artificial artificial intelligence cyber cyber risk +21

Microsoft, Google widen passkey support for its users an hour ago | www.helpnetsecurity.com

account protection authentication awareness bitwarden +18

Cyble Vision X covers the entire breach lifecycle an hour ago | www.helpnetsecurity.com

access artificial artificial intelligence aspect +23

BlackBerry CylanceMDR improves cybersecurity defensive strategy 2 hours ago | www.helpnetsecurity.com

address advanced ai platform amp +28

FortiGate 200G series boosts campus connectivity for Wi-Fi 7 2 hours ago | www.helpnetsecurity.com

ai-powered campus connectivity firewall +15

Nokod Security Platform secures low-code/no-code development environments and apps 3 hours ago | www.helpnetsecurity.com

applications apps automations code +23

Lenovo launches AI-based Cyber Resiliency as a Service 3 hours ago | www.helpnetsecurity.com

copilot copilot for security cyber cyber protection +24

Edgio ASM reduces risk from web application vulnerabilities 4 hours ago | www.helpnetsecurity.com

application application vulnerabilities asm assets +33

Gurucul REVEAL empowers organizations with full control over data 4 hours ago | www.helpnetsecurity.com

alerts analytics and response capabilities +26

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote

View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US

View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA

View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco

View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700

View on infosec-jobs.com