Research

Subscribe to our research

Keep up with the latest software supply chain attacks

The Great npm Garbage Patch

Open-source spam is a growing threat. The Tea protocol and npm are taking action, but the problem persists. Our research is dedicated to combating this issue and protecting the integrity of the open-source ecosystem. See Phylum Research....

New Tactics from a Familiar Threat

North Korean hackers are using a new tactic to target software developers. They create fake copies of legitimate packages to steal cryptocurrency and other sensitive data. See Phylum Research......