Tal Folkman

Category //

Tal Folkman

Evolution of a Software Supply Chain Attacker

Just like Hollywood has its own celebrities and well-known actors, the world of malicious open-source packages also has its own notorious players. And just like Hollywood stars, these threat actors don’t always stay in the spotlight. They can take breaks

Read More »

New Technique Used by Attackers in NPM to Avoid Detection

Checkmarx SCS team recently detected several malicious NPM packages using a new evasion technique, enhancing dependency confusion attacks to help malicious packages avoid detection. This novel technique tries to avoid being detected by security scanners or AppSec platforms, which sometimes

Read More »
Skip to content