Search
START TYPING AND PRESS ENTER TO SEARCH

Blog

Checkmarx Finds Threat Actor ‘Fully Automating’ NPM Supply Chain Attacks 

Threat hunters at Checkmarx on Monday raised an alarm after discovering a threat actor fully automating the creation and delivery of “hundreds of malicious packages” into the NPM ecosystem. The Checkmarx warning comes on the heels of Snyk’s discovery of “deliberate sabotage” of NPM package managers and raises new concerns about the software supply chain threat landscape.
Facebook
Linkedin
Twitter
Youtube
Envelope
Facebook Linkedin Twitter Youtube Envelope

About the Author

Checkmarx Admin

Checkmarx Admin

See All Blogs >
Checkmarx Admin

Checkmarx Admin

See All Blogs >

About the Author

Never miss an update. Subscribe today!

By submitting my information to Checkmarx, I hereby consent to the terms and conditions found in the Checkmarx Privacy Policy and to
the processing of my personal data as described therein. By clicking submit below, you consent to allow Checkmarx
to store and process the personal information submitted above to provide you the content requested.

More Resources to Consider

Surprise: When Dependabot Contributes Malicious Code  
September 27, 2023
Checkmarx Named a Leader in the 2023 Forrester Wave™ for Static Application Security Testing 
September 20, 2023
Attacker Unleashes Stealthy Crypto Mining via Malicious Python Package
September 19, 2023
Find and prioritize application vulnerabilities with ServiceNow and Checkmarx
September 14, 2023

Contact Us

Interested in learning more about our unified platform and services?
Get in touch with a member of our team.
Request a Demo
Learn More
Solutions
Industry
Solutions For
Services
Partners
Company
Resources
Community
Linkedin Twitter Youtube Facebook

Terms of Use | Checkmarx Privacy Policy | Checkmarx.com Cookie Policy

©2023 Checkmarx Ltd. All Rights Reserved. iISO/IEC 27001:2013 Certified

Skip to content