This week, Sonatype, a provider of AI-driven DevSecOps, unveiled the Q1 2026 Open Source Malware Index, identifying 21,764 malicious open source packages in the first quarter of the year, bringing the total logged since 2017 to 1,346,867. The npm registry continues to be the target… Read More
Read more in: Fintech, Artificial Intelligence | Tagged Brian Fox, malware, npm, Sonatype
Sonatype, a provider of AI-centric DevSecOps, this week released the Open Source Malware Index, Q3 2025, which analyzed 34,319 open source malware packages discovered by Sonatype across major open source registries, including npm, PyPI, Hugging Face, and more. This quarter’s count brings the total number of… Read More
Read more in: Fintech, Global | Tagged Brian Fox, dropper, hack, malware, mining, Sonatype
Sonatype, a software supply chain security company, this week released the Q2 2025 edition of its Open Source Malware Index, uncovering 16,279 malicious open source packages across major ecosystems including npm and PyPI. This quarter’s count brings the total number of open source malware packages Sonatype has discovered… Read More
Read more in: Blockchain & Digital Assets, Fintech, Global | Tagged Brian Fox, lazarus group, malware, Sonatype
© 2026 Crowded Media Group. All Rights Reserved.