Phylum

Crypto-Themed npm Packages Found Delivering Stealthy Malware

Research

On October 30, 2023 Phylum’s automated risk detection platform alerted us to a strange publication to npm called puma-com. Upon investigation, we found a very convoluted attack chain that ultimately pulled a remote file, manipulated

Phylum Research Team Nov 4, 2023 9 min read

Subscribe to our research

Keep up with the latest software supply chain attacks

Dozens of npm Packages Caught Attempting to Deploy Reverse Shell

On October 27, Phylum’s automated risk detection platform began alerting us to a series of suspicious publications on npm. Over the course of the...

Phylum Research Team Nov 2, 2023 8 min read

Obfuscated PyPI Packages Purporting to be i18n Libraries Actually Stealing Telegram Data

Phylum discovered two packages published to PyPI on October 28 that claim to be libraries for simplifying internationalization. The files were highly obfuscated and upon...

Phylum Research Team Oct 31, 2023 7 min read

Q3 2023 Evolution of Software Supply Chain Security Report

Phylum specializes in identifying and mitigating software supply chain attacks, focusing on protecting developers against threats originating from open-source ecosystems. By meticulously monitoring and analyzing...

Phylum Research Team Oct 17, 2023 11 min read

Phylum Discovers SeroXen RAT in Typosquatted NuGet Package

On October 6, 2023, Phylum’s automated risk detection platform alerted us to a suspicious publication on NuGet. After working through several layers of obfuscation...

Phylum Research Team Oct 12, 2023 6 min read