Jan 2024 | Supply Chain Security
Organizations are continuing to see an increase in risk across their software supply chain. Our team has identified and analyzed January’s top three trends in supply chain attacks, and found that most incidents involved the following threats:
Information and Credential Theft:
We found that 56% of attacks aimed to siphon sensitive data, such as host information and user credentials.
Dependency Confusion and Typosquatting Tactics:
Attacks designed to deploy packages with names that closely resemble legitimate and trusted libraries accounted for 28% of all attacks in January.
Malware and Backdoor Injections: