Attacks Move Beyond Vulnerabilities

Mend • April 25, 2023

Attacks Move Beyond Vulnerabilities

The number of malicious package attacks on open source registries such as npm and rubygems has increased significantly from 2021 to 2022, posing a growing security risk to the open source ecosystem. According to Mend research, there has been a 315% increase in the publication of malicious packages to these registries. These packages can cause significant damage, including stealing credentials, exfiltrating data, turning devices into botnets, or erasing data. As a result, malicious packages have become increasingly popular among threat actors who target applications.

Unfortunately, many companies have only recently started exploring technologies that can defend against these attacks. Mend's 360-degree malicious package protection has already identified evidence of threat actor success in the form of thousands of malicious packages hidden in existing code bases.

Attacks Move Beyond Vulnerabilities

Previous
The Human Impact of Fraud and Financial Crime on Customer Trust in Banks

Next
Cyber Threat Intelligence Risks to European Governments, Government-owned Central Banks and ENISA

You might also be interested in …

Mainframes and Security: Current Trends, Key Capabilities

Mainframes and Security: Current Trends, Key Capabilities

What's the answer to the vulnerability overload problem? Key findings from ESG's Cyber Risk Management survey

Gartner Report: Vulnerability Management Via a Risk-Based Approach

Shifting Gears To Quantify Risk with Netflix’s Tony Martin-Vegue

Shifting Gears To Quantify Risk with Netflix’s Tony Martin-Vegue

Building the Business Case for Quantifying Cyber Risk

Building the Business Case for Quantifying Cyber Risk

From Data to Decisions: Maximizing Operational Efficiency Through IT-OT Integration

►

From Data to Decisions: Maximizing Operational Efficiency Through IT-OT Integration

Navigating IT-OT Convergence: A Strategic Imperative for Enterprise Success

Navigating IT-OT Convergence: A Strategic Imperative for Enterprise Success

Why CISOs Need an OT Security Platform

Why CISOs Need an OT Security Platform

2023 State of Operational Technology and Cybersecurity Report

2023 State of Operational Technology and Cybersecurity Report

Around the Network

Medical Device Cyberthreat Modeling: Top Considerations

Medical Device Cyberthreat Modeling: Top Considerations

Safeguarding Critical OT and IoT Gear Used in Healthcare

Safeguarding Critical OT and IoT Gear Used in Healthcare

Properly Vetting AI Before It's Deployed in Healthcare

Properly Vetting AI Before It's Deployed in Healthcare

Identity Security and How to Reduce Risk During M&A

Identity Security and How to Reduce Risk During M&A

Evolving Threats Facing Robotic and Other Medical Gear

Evolving Threats Facing Robotic and Other Medical Gear

Protecting Medical Devices Against Future Cyberthreats

Protecting Medical Devices Against Future Cyberthreats

Transforming a Cyber Program in the Aftermath of an Attack

Transforming a Cyber Program in the Aftermath of an Attack

How 'Security by Default' Boosts Health Sector Cybersecurity

How 'Security by Default' Boosts Health Sector Cybersecurity

Is It Generative AI's Fault, or Do We Blame Human Beings?

Is It Generative AI's Fault, or Do We Blame Human Beings?

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.eu, you agree to our use of cookies.