Jeanette Sherman, Mend.io Sr. product marketing manager, shares findings from Mend.io’s Malicious Packages Special Report. The report dives into understanding a 315% spike observed from 2021 to 2022 in the publication of malicious packages to open-source registries such as npm and rubygems. The report also covers the rise in protestware, data exfiltration, sabotage and other motivations for introducing compromised software through frequently used package managers.
Download the free report at https://www.mend.io/resources/research-reports/malicious-package-protection-report/. Also check out the upcoming AppSec Today video series on Techstrong.tv sponsored by Mend.io.