Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

software supply chain security automation companies - software supply chain security companies

Software Supply Chain

Software Supply Chain Security Automation

August 19, 2024

ASPM_Tools_List

ASPM

Top 9 ASPM Tools to Consider this 2025

August 16, 2024

SCA security - SCA security tools - software composition analysis

Open-Source Security

SCA Security: Comprehensive Guide Software Security

August 14, 2024

ASPM Security - what is ASPM - ASOC Security

ASPM

ASPM Security vs. ASOC Security: What Sets Them Apart

August 13, 2024

ICT Incident Management

CI CD Security

ICT Incident Management: DORA’s Key Pillar

August 8, 2024

Xygeni_ASPM_Remediation_software_supply_chain_security- ASPM_Tool_Application _Security_Posture_Management_tool

ASPM

How Can Application Security Posture Management (ASPM) Enhance Your Software Supply Chain Security?

August 7, 2024

open source malware protection - open source malware scanner

Open-Source Security

Open Source Malware: Everything You Need to Know

August 6, 2024

Open-Source Security

Open Source Malicious Packages: The Xygeni Approach

July 25, 2024

secure-software-development

Open-Source Security

Secure Software Development: 8 Best Practices

July 24, 2024

open-source packages

Attacks Analysis

Protecting Against Open Source Malicious Packages: What Does (Not) Work

July 23, 2024

sca vs sast - sast vs sca - sast and sca

Open-Source Security

SCA vs SAST : Key Differences in Application Security

July 19, 2024

open-source-malware-analysis-tools

Open-Source Security

Malware Analysis: The Benefits

July 18, 2024