• Platform
    Mend-io-logo-mark
    Mend AI Native AppSec Platform Take a tour
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - ai
    Mend AI Secure AI powered applications
    Mend sast icon
    Mend SAST Secure proprietary code 10x faster
    Mend container small icon
    Mend Container Container security done right
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - sca
    Mend SCA Decrease open source risk
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - renovate
    Mend Renovate Automate dependency updates
    Expand AppSec coverage
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - dast icon 1 DAST Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - apis icon 1 API security Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - eol icon EOL support
    Platform Benefits
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - repoi icon Repo integration Scalability-icon Scalability Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - reachability icon Reachability
  • Solutions
    Ai models risk - nav bar icon
    AI app security Manage risks in AI models and agents
    Ai-red-teaming-icon-
    AI red teaming Test and secure conversational AI
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - ai gen code security nav bar icon 36x36 1
    AI gen code security Real-time AI code security
    Sbom - nav bar icon
    SBOM Move from static to effective SBOMs
    Runtime-security-nav-bar-icon
    Dynamic testing Test for risks in running applications
    Code scanning - nav bar icon
    Code scanning Find and fix known vulnerabilities
    Open source license nav bar icon
    Open source security Prevent. Prioritize. Automate.
    Open source license - nav bar icon
    Open source compliance Risk management for OSS licenses
    Dependency updates - nav bar icon
    Dependency updates Reduced risk, better code
    Container security container security
    Container security Container security, simplified
  • Company
    About us - nav bar icon
    About us Who we are
    Careers nav bar icon
    Careers Join our team
    Partners - nav bar icon
    Partners Meet our partners
    Events - nav bar icon
    Events Upcoming events
    Newsroom - nav bar icon
    Newsroom The latest Mend.io news
    Contact-us nav bar icon
    Contact us Connect with us
  • Resources
    Resource center - nav bar icon
    Resource center View our latest resources
    Blog - nav bar icon
    Blog The latest AppSec news and insights
    Podcast-icon
    Podcast Insights from leading experts
    Customers - nav bar icon
    Customers View our customer case studies
    Integrations - nav bar icon
    Integrations Find your integration
    Langugages nav bar icon
    Languages Find your language
    Vulnerability database - nav bar icon
    Vulnerability database Mend.io's OSS vulnerability database
    Documentation - nav bar icon
    Documentation Product and feature documentation
    Featured
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - featured image
    A CISO’s Guide to Securing AI from the Start
    Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - practical guide to sast white paper image
    A Practical Guide to Making the Most of your SAST Investment
Schedule a Demo

Mend.io Blog

Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack
Tom Abai Sep 16, 2025

NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

LATEST
Learn more

Filter & Search

Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - npm supply chain attack blog

NPM Ecosystem Under Siege: Self-Propagating Malware Compromises 187 Packages in a Huge Supply Chain Attack

Tom Abai Sep 16, 2025
Malicious Packages

A major NPM breach exposed 187 packages.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog cover sast forrester wave mend io 5

What Being Customer Recognized in The Forrester Wave™: Static Application Security Testing Solutions, Q3 2025 Really Means

Rami Sass Sep 9, 2025
Application Security

Mend.io is recognized as a Strong Performer and customer favorite in The Forrester Wave™: SAST Q3 2025.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - npm supply chain attack blog

NPM Supply Chain Attack: Sophisticated Multi-Chain Cryptocurrency Drainer Infiltrates Popular Packages

Tom Abai Sep 8, 2025
Malicious Packages

A sophisticated npm supply chain attack compromised popular packages

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - why ai tools are different blog

Why AI Security Tools Are Different and 9 Tools to Know in 2025

Mend.io Team Sep 4, 2025
AI Models Risk

Discover 9 AI security tools that protect data, models, and runtime.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic understanding bias in generative ai

Understanding Bias in Generative AI: Types, Causes & Consequences

Mend.io Team Sep 1, 2025
AI Models Risk

Learn what bias in generative AI is, its causes, and consequences.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic 58 generative ai statistics

58 Generative AI Statistics to Know in 2025

Mend.io Team Aug 28, 2025
AI Models Risk

Explore 58 key generative AI stats for 2025.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - sbom security key components and use cases blog

SBOM Security: 6 Key Components and Top 3 Use Cases

Mend.io Team Aug 26, 2025
Application Security

Discover 6 core components and 3 top use cases of SBOM security.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic what is an ai bom

What is an AI Bill of Materials (AI BOM)?

Mend.io Team Aug 20, 2025
AI Models Risk

Learn how to create and automate an AI BOM.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic gen ai security

What is Generative AI Security?

Mend.io Team Aug 19, 2025
AI Models Risk

Learn what generative AI in cybersecurity is and how to secure against threats.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog image hallucinated package attacks 2x

The Hallucinated Package Attack: Slopsquatting

Daniel Wyrzykowski Aug 15, 2025
AI Models Risk

Learn how AI-generated code can lead to fake package installs and attacks.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog a guide to standard sbom formats

What Is A Software Bill of Materials (SBOM) & 4 Critical Benefits

Mend.io Team Aug 4, 2025
SBOM

Learn how SBOMs improve transparency, security, and compliance.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog pr forge

Introducing Mend Forge

Mend.io Team Aug 1, 2025
Application Security

Explore Mend Forge—Mend.io’s AI-native innovation engine

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog cover prompt hardening

What is AI system prompt hardening?

Mend.io Team Jul 30, 2025
AI Models Risk

Learn how to protect AI apps with secure prompt hardening techniques.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic deploying gen ai guardrails@2x

Deploying Gen AI Guardrails for Compliance, Security and Trust

Mend.io Team Jul 25, 2025
AI Models Risk

Explore AI guardrails for generative AI.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog graphic patch management

Why Patch Management is Important and How to Get It Right

Justin Clareburt Jul 18, 2025
Dependency Updates

Discover why patch management is one of the most critical and overlooked pillars of application security. Learn how to streamline your patching process and automate it.

Read More Read More
Npm ecosystem under siege: self-propagating malware compromises 187 packages in a huge supply chain attack - blog image red teaming tools

Best AI Red Teaming Tools: Top 7 Solutions in 2025

Bar-El Tayouri Jul 16, 2025
AI Models Risk

AI Red Teaming tools help teams simulate real life scenarios. They zero in on a more practical question: how does your AI system really behaves.

Read More Read More
Previous
1 2 3 4 ... 33
Next

Subscribe to our Newsletter

Join our subscriber list to get the latest news and updates

Thanks for signing up! 

© 2025 Mend.io (White Source Ltd.) All rights reserved.