Phylum Identifies 137 Malicious npm Packages
137 malicious packages were recently published to npm that exfiltrate...
| Jan 29, 2023
Phylum Identifies 137 Malicious npm Packages
137 malicious packages were recently published to npm that exfiltrate host information to a remote endpoint as part of a...
The Phylum Research Team
A Deep Dive Into poweRAT: a Newly Discovered Stealer/RAT Combo Polluting PyPI
Phylum uncovers new PyPI malware distributing remote access tools.
The Phylum Research Team
Phylum detects a series of suspicious publications on NPM…again
Phylum platform continues to automatically identify and block risks...
The Phylum Research Team
Phylum Discovers New Stealer Variants in Burgeoning PyPI Supply Chain Attack
On December 6, 2022 Phylum’s automated risk detection platform...
The Phylum Research Team
W4SP Stealer Update—They’re Still At It
In case the threat actors haven’t figured it out yet, Phylum has a...
The Phylum Research Team
Into The W4SPs Nest
Monitoring the communications of software supply chain malware...
Louis Lang, CTO
Phylum Detects Ongoing Typosquat/Ransomware Campaign in PyPI and NPM
Malicious packages that download ransomware binaries written in...
Louis Lang, CTO
Report: 2022 Evolution of Software Supply Chain Security
Find out what the Phylum team learned in 2022 and is looking forward...
The Phylum Research Team
Disrupting a PyPI Software Supply Chain Threat Actor
Phylum disrupts software supply chain attacker attempting to...
Louis Lang, CTO
W4SP Stealer Update—Attacker now Attempting to Masquerade as Popular Orgs
Phylum's team has discovered more PyPI packages attempting to deliver...