Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

SafeDev Talk III - ASPM

ASPM

Do You Need ASPM in Your Life?

May 23, 2024

Xygeni’s_ASPM_James_Berthoty

ASPM

Discover Xygeni’s ASPM Revolution with James Berthoty

May 22, 2024

Software-Dependencies-Attacks

Attacks Analysis

Identifying and Managing Software Dependencies Attacks

May 16, 2024

Typosquatting_vs_Copycat_Packages

Attacks Analysis

Typosquatting vs. Copycat Packages: Understanding the Differences

May 16, 2024

Socially Engineered Attacks

Open-Source Security

Defending Open Source: The Battle Against Socially Engineered Attacks

May 9, 2024

Open-Source-Packages

Open-Source Security

New Threats on the Block: Malware in Open Source Packages

April 25, 2024

Zero Day Attack Prevention

Open-Source Security

Zero Day Attack Essentials: What You Need to Know to Secure Your Systems

April 23, 2024

CICD-Pipelines-Vulnerabilities

CI CD Security

A Deep Dive into CI/CD Pipelines Vulnerabilities (IV) : Protecting against Artifact Poisoning through Software Attestations

April 18, 2024

What is Malicious Code - types of malicious code

Attacks Analysis

What is Malicious Code and How Does it Work?

April 16, 2024

securing-the-software-supply-chain-enhancing-software-supply-chain-security

CI CD Security

Innovation Spotlight: Our Role in Software Supply Chain Security

April 11, 2024

RSA_Banner_Landing

Software Supply Chain

Xygeni Unveils Cybersecurity Innovations at RSA Conference 2024

April 9, 2024

Pagina_Eventos

Software Supply Chain

SafeDev Talks II – Demystifying SBOM Security

April 4, 2024