Software Supply Chain Security

Security measures for software development and deployment processes.

Cybercrime & Underground Economy

Understanding Package Registry Flooding

Package registry flooding is a cyberattack where threat actors overwhelm software package repositories with fake entries to hide malicious content, erode trust, and create vulnerabilities in the software supply chain.…
Read more →

Lara De Jong

·

Nov 13, 2025

·

3–4 minutes
Cybercrime & Underground Economy

What is an npm Worm?

An npm worm is a self-propagating campaign that exploits the npm registry by distributing fake or deceptive software packages to flood the registry. These financially motivated campaigns often use automated…
Read more →

Elles De Yeager

·

Nov 13, 2025

·

3–4 minutes
Cyber News & Updates

Hidden “Logic Bombs” Found in Popular Software Packages, Threatening Future Industrial Sabotage and Data Corruption

Security researchers have uncovered a new wave of ‘logic bombs’ hidden within commonly used software, designed to disrupt critical industrial systems and corrupt databases, posing significant challenges for detection and…
Read more →

Reza Rafati

·

Nov 7, 2025

·

2–3 minutes