Stacklok logo
Solutions
Source code repository security Open source dependency security
Company
About Careers Press
Community
Minder
Resources
Blog Documentation
Login
Categories

Resources categorized "Threat Analysis"

There are a total of (8) items.

Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers

Poppaea McDermott /
Sep 10, 2024
Threat Analysis
Continue Reading

Cross-platform RAT deployed by weaponized 'requests' clone

Luke Hinds / Poppaea McDermott /
Aug 30, 2024
Threat Analysis
Continue Reading

NPM packages leveraged for cryptocurrency theft

Poppaea McDermott /
Aug 2, 2024
Threat Analysis
Continue Reading

DestroyLoneliness: npm starjacking attack on Roblox Node.js library delivers QuasarRAT

Poppaea McDermott /
Jul 11, 2024
Threat Analysis
Continue Reading

Python typosquatting attack targets popular open source PyPI library with 30M weekly downloads

Luis Juncal / Luke Hinds /
Jun 6, 2024
Threat Analysis
Continue Reading

The good, the bad and the ugly of the XZ vulnerability

Craig McLuckie /
Apr 1, 2024
Threat Analysis
Continue Reading

An analysis of an obfuscated JavaScript malware package

Luke Hinds / Edward Thomson /
Mar 27, 2024
Threat Analysis
Continue Reading

How npm install scripts can be weaponized: A real-world example of a harmful npm package

Edward Thomson /
Mar 3, 2024
Threat Analysis
Continue Reading
Newsletter

Stay in the loop

Subscribe to our newsletter for the latest news about our products and about open source supply chain security.

Stacklok logo
© 2024 Stacklok
Privacy Policy Terms of Service
Main Menu
Home About Careers Contact
Products
Trusty Minder
Resources
All Resources Blog Videos Trusty Docs Minder Docs
Contact Us
hello@stacklok.com