Discord Contact
Phylum Research Team

Phylum Research Team

Hackers, Data Scientists, and Engineers responsible for the identification and takedown of software supply chain attackers.
Phylum Detects Ongoing Typosquat/Ransomware Campaign in PyPI and NPM

Phylum Detects Ongoing Typosquat/Ransomware Campaign in PyPI and NPM

Phylum Research
An Ongoing Attack Against Python and Javascript Developers Update Dec 13: Malware author continues to publish packages to PyPI. We identified these packages within 20m of publication and got them removed. Update Dec 09: This actor
Phylum Research Team 3 min read

Phylum Blocks Software Supply Chain Security Attacks

Phylum identifies malicious or risky open-source packages before they enter the software supply chain.

SCA or public databases
82%

of Phylum’s findings are not found by
SCA or reported to public databases

Other curation tools
70%

of Phylum’s findings are not found by
other curation tools

Other software supply chain companies
60%

of Phylum’s findings are not found by
other software supply chain companies

Report: 2022 Evolution of Software Supply Chain Security

Report: 2022 Evolution of Software Supply Chain Security

Phylum Research
Open-source threats are damaging, shockingly unsophisticated and probably already escalating through your software. In early 2020, an ambitious group of developers assembled to tackle the biggest cybersecurity challenge they had ever encountered – securing the software supply
Phylum Research Team 12 min read

Phylum Blocks Software Supply Chain Security Attacks

Phylum identifies malicious or risky open-source packages before they enter the software supply chain.

SCA or public databases
82%

of Phylum’s findings are not found by
SCA or reported to public databases

Other curation tools
70%

of Phylum’s findings are not found by
other curation tools

Other software supply chain companies
60%

of Phylum’s findings are not found by
other software supply chain companies

Disrupting a PyPI Software Supply Chain Threat Actor

Disrupting a PyPI Software Supply Chain Threat Actor

Phylum Research
Software supply chain attacks in the open-source ecosystem are frequent and pervasive. The cost of publishing a malicious package is low, while the payoff could be high - yielding keys to infrastructure, bank credentials, or cryptocurrency.
Phylum Research Team 7 min read

Phylum Blocks Software Supply Chain Security Attacks

Phylum identifies malicious or risky open-source packages before they enter the software supply chain.

SCA or public databases
82%

of Phylum’s findings are not found by
SCA or reported to public databases

Other curation tools
70%

of Phylum’s findings are not found by
other curation tools

Other software supply chain companies
60%

of Phylum’s findings are not found by
other software supply chain companies

Phylum Research Roundtable 2022

Phylum Research Roundtable 2022

Phylum Insights and Resources
The Phylum Research Team held a roundtable where we reviewed Software Supply Chain Attacks and the recent malware campaigns we have discovered in 2022. The collaborative Q&A session covered the following: -Understanding the attack
Phylum Research Team

Phylum Blocks Software Supply Chain Security Attacks

Phylum identifies malicious or risky open-source packages before they enter the software supply chain.

SCA or public databases
82%

of Phylum’s findings are not found by
SCA or reported to public databases

Other curation tools
70%

of Phylum’s findings are not found by
other curation tools

Other software supply chain companies
60%

of Phylum’s findings are not found by
other software supply chain companies

W4SP Stealer Update—Attacker now Attempting to Masquerade as Popular Orgs

W4SP Stealer Update—Attacker now Attempting to Masquerade as Popular Orgs

Phylum Research
Hello again from the Phylum Research Team! It’s been 2 weeks since we published our deep dive into the on-going W4SP Stealer supply-chain attack targeting Python developers and this is still a very active attack.
Phylum Research Team 2 min read

Phylum Blocks Software Supply Chain Security Attacks

Phylum identifies malicious or risky open-source packages before they enter the software supply chain.

SCA or public databases
82%

of Phylum’s findings are not found by
SCA or reported to public databases

Other curation tools
70%

of Phylum’s findings are not found by
other curation tools

Other software supply chain companies
60%

of Phylum’s findings are not found by
other software supply chain companies