Jan 2024 | Supply Chain Security

Threat Trends
to Watch

Organizations are continuing to see an increase in risk across their software supply chain. Our team has identified and analyzed January’s top three trends in supply chain attacks, and found that most incidents involved the following threats:

Information and Credential Theft:

We found that 56% of attacks aimed to siphon sensitive data, such as host information and user credentials.

Dependency Confusion and Typosquatting Tactics:

Attacks designed to deploy packages with names that closely resemble legitimate and trusted libraries accounted for 28% of all attacks in January.

Malware and Backdoor Injections:

Malware and backdoors embedded within compromised packages represented 16% of reported

Want this threat intelligence inside your dashboard or IDE?
Check out Checkmarx Supply Chain Threat Intelligence here.

Download Free Report →

Threat Trends
to Watch

We found that 56% of attacks aimed to siphon sensitive data, such as host information and user credentials.

Attacks designed to deploy packages with names that closely resemble legitimate and trusted libraries accounted for 28% of all attacks in January.

Malware and backdoors embedded within compromised packages represented 16% of reported

Subscribe for Monthly Trend Alerts

Industry Recognition

Follow Us

Threat Trendsto Watch

We found that 56% of attacks aimed to siphon sensitive data, such as host information and user credentials.

Attacks designed to deploy packages with names that closely resemble legitimate and trusted libraries accounted for 28% of all attacks in January.

Malware and backdoors embedded within compromised packages represented 16% of reported

Subscribe for Monthly Trend Alerts

Industry Recognition

Follow Us

Threat Trends
to Watch