Click here to download all references as Bib-File.
2022-08-11 ⋅ sonatype ⋅ PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero |
2022-05-20 ⋅ sonatype ⋅ New 'pymafka' malicious package drops Cobalt Strike on macOS, Windows, Linux Cobalt Strike |
2021-10-20 ⋅ sonatype ⋅ Newly Found npm Malware Mines Cryptocurrency on Windows, Linux, macOS Devices |
2021-06-21 ⋅ sonatype ⋅ Sonatype Catches New PyPI Cryptomining Malware |
2021-03-01 ⋅ sonatype ⋅ Newly Identified Dependency Confusion Packages Target Amazon, Zillow, and Slack; Go Beyond Just Bug Bounties |
2020-12-01 ⋅ sonatype ⋅ There’s a RAT in my code: new npm malware with Bladabindi trojan spotted NjRAT |
2020-11-16 ⋅ sonatype ⋅ Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware |
2020-09-02 ⋅ sonatype ⋅ Inside the “fallguys” malware that steals your browsing data and gaming IMs; Continued attack on open source software |