Blogs by ReversingLabs Experts

software supply chain security

Groundhog day: NPM package caught stealing browser passwords

Karlo Zanki

Today almost everyone knows that they need to protect their publicly exposed services and applications against the...

Research

Karlo Zanki

Recognizing risks introduced by statically linked third-party libraries

Research

Chris Hoff

Much like SolarWinds before it, this incident shows we need to take a more critical look at the software we are using...

Blog

Chris Hoff

How to Rebuild Trust in the SDLC and 3rd Party Software Supply Chain

Threat Research

Tomislav Peričin

SolarWinds compromise exploited through sophistication and patience

Threat Research

Tomislav Maljic

Typosquatting barrage on RubyGems software repository users

Security Operations

ReversingLabs

Enterprise software development graduated from the “waterfall” framework of development and operations

Threat Research

ReversingLabs

There are many reasons software supply chain attacks are attractive to cyber criminals

Security Architectures

ReversingLabs

Implementing Processes and Controls to Disrupt Attackers

Threat Research

Tomislav Peričin

Detecting malware in package manager repositories