Stacklok logo
Solutions
Source code repository security Open source dependency security
Company
About Careers Press
Community
Minder
Resources
Blog Documentation
Login
Categories

Resources categorized "Threat Analysis"

There are a total of (8) items.

Link to Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers

Dependency hijacking: Dissecting North Korea’s new wave of DeFi-themed open source attacks targeting developers

Poppaea McDermott /
Sep 10, 2024
Threat Analysis
Continue Reading
Link to Cross-platform RAT deployed by weaponized 'requests' clone

Cross-platform RAT deployed by weaponized 'requests' clone

Luke Hinds / Poppaea McDermott /
Aug 30, 2024
Threat Analysis
Continue Reading
Link to NPM packages leveraged for cryptocurrency theft

NPM packages leveraged for cryptocurrency theft

Poppaea McDermott /
Aug 2, 2024
Threat Analysis
Continue Reading
Link to DestroyLoneliness: npm starjacking attack on Roblox Node.js library delivers QuasarRAT

DestroyLoneliness: npm starjacking attack on Roblox Node.js library delivers QuasarRAT

Poppaea McDermott /
Jul 11, 2024
Threat Analysis
Continue Reading
Link to Python typosquatting attack targets popular open source PyPI library with 30M weekly downloads

Python typosquatting attack targets popular open source PyPI library with 30M weekly downloads

Luis Juncal / Luke Hinds /
Jun 6, 2024
Threat Analysis
Continue Reading
Link to The good, the bad and the ugly of the XZ vulnerability

The good, the bad and the ugly of the XZ vulnerability

Craig McLuckie /
Apr 1, 2024
Threat Analysis
Continue Reading
Link to An analysis of an obfuscated JavaScript malware package

An analysis of an obfuscated JavaScript malware package

Luke Hinds / Edward Thomson /
Mar 27, 2024
Threat Analysis
Continue Reading
Link to How npm install scripts can be weaponized: A real-world example of a harmful npm package

How npm install scripts can be weaponized: A real-world example of a harmful npm package

Edward Thomson /
Mar 3, 2024
Threat Analysis
Continue Reading
Newsletter

Stay in the loop

Subscribe to our newsletter for the latest news about our products and about open source supply chain security.

Stacklok logo
© 2024 Stacklok
Privacy Policy Terms of Service
Main Menu
Home About Careers Contact
Products
Stacklok Insight Minder
Resources
All Resources Blog Videos Documentation
Contact Us
hello@stacklok.com