#malicious-packages

Articles tagged with #malicious-packages

Axios malicious package: what developers and defenders should check
What the Axios malicious package contained, how it was published, and how teams can check GitHub, Intune, CrowdStrike, and Jamf.
Apr 4, 20265 min read16
Safely Exploring Malicious NPM Packages: A Guide to Using Verdaccio for Secure Testing
Software supply chain attacks are becoming increasingly common, posing significant risks to entire ecosystems. Detecting, analyzing, and mitigating these threats is crucial for security researchers and engineers. This guide explores how to use Verdac...
Jan 11, 20254 min read287