Checkmarx Blog
Find it all here - expert insights, opinionated views and more
All articles
April 19, 2026
Securing Your AI Supply Chain: Your AI Is Running, But You Don’t Know What It’s Doing
Read More
Securing Your AI Supply Chain: Your AI Is Running, But You Don’t Know What It’s Doing
January 11, 2026
The AI Inventory Gap: Why Your Organization Has No Idea What AI Assets Are Part of Your Software Supply Chain
Read More
The AI Inventory Gap: Why Your Organization Has No Idea What AI Assets Are Part of Your Software Supply Chain
November 11, 2025
Malicious Open-Source Packages: The Imminent AppSec Threat for which Most Enterprises are Underprepared
Read More
Malicious Open-Source Packages: The Imminent AppSec Threat for which Most Enterprises are Underprepared
October 14, 2024
This New Supply Chain Attack Technique Can Trojanize All Your CLI Commands
Read More
This New Supply Chain Attack Technique Can Trojanize All Your CLI Commands
October 1, 2024
Crypto-Stealing Code Lurking in Python Package Dependencies
Read More
Crypto-Stealing Code Lurking in Python Package Dependencies
August 29, 2024
Year-Long Campaign of Malicious npm Packages Targeting Roblox Users
Read More
Year-Long Campaign of Malicious npm Packages Targeting Roblox Users
July 26, 2024
Malicious Python Package Targets macOS Developers To Access Their GCP Accounts
Read More
Malicious Python Package Targets macOS Developers To Access Their GCP Accounts
June 28, 2024
Alert: CDN Service “polyfill.io” Used by 100K+ Websites Provided Malicious Code in Responses
Read More
Alert: CDN Service “polyfill.io” Used by 100K+ Websites Provided Malicious Code in Responses
May 16, 2024
Llama Drama: Critical Vulnerability CVE-2024-34359 Threatening Your Software Supply Chain
Read More
Llama Drama: Critical Vulnerability CVE-2024-34359 Threatening Your Software Supply Chain