Sonatype Intelligence Insights

Try It Now  
WATCH THE VIDEO

Deep dive into Sonatype Security Research

See incredible research performed (24x7x365) by our team.  Learn how open source exploits work.  Get expert guidance on how to remediate risk.
Image of a man holding a chainsaw with smoke around him

New Log4j 1.x CVEs, and critical Chainsaw vulnerability — What to do?

By Ax Sharma on January 21, 2022 vulnerabilities

In January 2022, Apache disclosed 3 vulnerabilities impacting Log4j 1.x versions.

Read More
Image of a column building with the word bank on it

Log4j exploits are now being used to spread Dridex banking Trojan

By Ax Sharma on December 21, 2021 vulnerabilities

As the Log4j vulnerability disclosures come out, and ongoing exploitation in the wild is on, we have been closely monitoring developments and tracking the gap between the disclosures and how fast the

Read More

Log4shell by the numbers- Why did CVE-2021-44228 set the internet on fire?

By Ilkka Turunen on December 14, 2021 vulnerabilities

On Friday, the news broke about Log4Shell, an easy-to-exploit vulnerability being exploited across the world. We have kept our blog up to date with the latest news, mitigations and strategies that

Read More
Laptop with code showing open source vulnerability exploit

What is the Log4j exploit?

By Ilkka Turunen on December 10, 2021 vulnerabilities

Critical new 0-day vulnerability in popular Log4j library discovered with evidence of mass scanning for affected applications

News broke early Friday morning of a serious 0-day remote code execution

Read More
Malware

Tracking the 'Noblox.js' npm malware campaign

By Juan Aguirre on November 23, 2021 vulnerabilities

A new malicious package, noblox.js-rpc was spotted on the npm registry this month that leverages the same techniques we saw before to steal all sorts of sensitive data like credentials, files, and

Read More
Small blocks representing computers with one red figure block separated out

npm hijackers at it again: Popular 'coa' and 'rc' open source libraries taken over to spread malware

By Juan Aguirre on November 05, 2021 vulnerabilities

Just last week we saw the popular npm package `ua-parser-js` get hijacked. Malicious actors gained access to the project maintainer's npm account and published malicious versions that attempted to

Read More
Scary-movie style scene of hand on television screen.

Fake npm Roblox API package installs ransomware and has a spooky surprise

By Juan Aguirre on October 27, 2021 vulnerabilities

The world was just coming to terms with the "ua-parser-js" npm library hijacking incident, and Sonatype's discovery of crypto-mining malware from last week, when we found a bigger, and spookier,

Read More
Disabling an explosive

Popular npm project used by millions hijacked in supply-chain attack

By Ax Sharma on October 25, 2021 vulnerabilities

Last week, Sonatype reported our discovery of three malicious npm cryptomining packages on npm: klow, klown, and okhsa. These packages, which infiltrated the npm registry between October 12 and 15,

Read More
Image of bitcoin breaking through a dollar bill

Newly found npm malware mines cryptocurrency on Windows, Linux, macOS devices

By Ax Sharma on October 20, 2021 vulnerabilities

Sonatype's automated malware detection system has caught multiple malicious packages on the npm registry this month. These packages disguise themselves as legitimate JavaScript libraries but were

Read More
Image of a line of cones with one knocked over

From feature to vulnerability: A Spring-Security-oauth2-Client story

By Juan Aguirre on August 27, 2021 vulnerabilities

Spring Security provides security services for the Spring IO Platform, available on their GitHub repository. Today we focus on the "oauth2" client, which provides an application with the capability

Read More
Linux & Mac Malware Bundled within Browserify npm Brandjack Attempt

Damaging Linux and Mac malware bundled within Browserify npm brandjack attempt

By Ax Sharma on April 13, 2021 vulnerabilities

Over the weekend, Sonatype spotted a rather unique malware sample published to the npm registry, within a day of its release on npm.

Read More
CVE-2021-22114 Spring-integration-zip

Deep diving into CVE-2021-22114 spring-integration-zip path traversal

By Juan Aguirre on March 31, 2021 vulnerabilities

Guess who's back? Earlier this month, CVE-2021-22114 in spring-integration-zip, returned for the second time to cause havoc.

Read More
PHP and netmask software supply chain attacks

Netmask flaw leaves millions vulnerable while a PHP Git server is hacked in software supply chain attack

By Ax Sharma on March 29, 2021 vulnerabilities

We've seen so many software supply chain attacks in recent weeks that it's hard for us to talk about all of them. But, in the last 24 hours, we've seen two major issues that are important for

Read More
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Subscribe for all the latest software security news and events

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information