Xygeni Blog

Must-Read Posts

SeedSweep: Ten Malicious npm Crypto Packages

SeedSweep: Ten Crypto-Themed npm Packages That Only Run When No One Is Watching

PairLoop: Hidden Remote-Control Panel in npm Package

PairLoop: One npm Package, Seventy Versions, and a Hidden Windows Remote-Control Panel

ConsentMask The npm Package Hiding Developer Identity Harvesting

ConsentMask: An npm Package That Wears a Telemetry Consent Banner Over Developer-Identity Harvesting

JulesJacker: Fake npm Worm Impersonates Jules AI

JulesJacker: A Fake-PoC npm Worm That Impersonates Google’s Jules Agent — and Turns on the Sandbox Analyzing It

RuntimeBroker npm Typosquat Plants Crypto Clipper

RuntimeBroker: an npm Typosquat Plants a 40-Chain Crypto-Clipper as a Cross-OS \”System Runtime Helper”\

AuditorTrap

AuditorTrap: A 22-Package Fake Crypto Security Guild on npm With Two Parallel Payloads

create sbom - sbom generation tools -sbom security

SDLC

How to Create SBOM with Xygeni – SBOM Security

February 15, 2024

The SBOM Revolution: How Transparency Transforms Compliance and Supercharges Software Security

SDLC

SBOM Security: Strengthening Software Compliance and Protection

February 13, 2024

CI CD Security

Unveiling the Future of Software Supply Chain Security: Insights from Industry Leaders

February 12, 2024

Common Compliance Pitfalls in Software Supply Chain Security

SDLC

Common Compliance Pitfalls in Software Supply Chain Security

February 8, 2024

poisoned-pipeline-execution-II

CI CD Security

A Deep Dive into CI/CD Pipelines Vulnerabilities (II) : Indirect Poisoned Pipeline Execution (I-PPE)

February 6, 2024

The Ledger Attack: draining hardware cryptowallets

Attacks Analysis

The Ledger Attack: draining hardware cryptowallets

January 30, 2024

Attacks Analysis

10 Malicious NPM Packages Uncovered: A Wake-up Call to Software Supply Chain Security

January 25, 2024

Brewing Security Resilience: A Coffee Talk on Software Supply Chain Security in 2024

Software Supply Chain

Brewing Security Resilience: A Coffee Talk on Software Supply Chain Security in 2024

January 24, 2024

aspm security - application security posture management

ASPM

ASPM – Application Security Posture Management: Elevating Cybersecurity & Business Success

January 23, 2024

what is an SBOM Security - Software Security

CI CD Security

SBOM Security and Its Role in Software Security

January 18, 2024

Software Supply Chain Security Threats in the Package Stage

CI CD Security

Software Supply Chain Security Threats in the Package Stage

January 16, 2024

CI CD Security

Software Supply Chain Threats in the Build Stage

January 9, 2024