![Graphics only](https://info.checkmarx.com/hubfs/Graphics%20only.webp)
Organizations are continuing to see an increase in risk across their software supply chain. Our team has identified and analyzed January’s top three trends in supply chain attacks, and found that most incidents involved the following threats:
![Email – Divider Email – Divider](https://info.checkmarx.com/hubfs/Email%20%E2%80%93%20Divider.webp)
![Trend 01 Trend 01](https://info.checkmarx.com/hs-fs/hubfs/Trend%2001.webp?width=94&height=30&name=Trend%2001.webp)
Information and Credential Theft:
We found that 56% of attacks aimed to siphon sensitive data, such as host information and user credentials.
![Trend 02 Trend 02](https://info.checkmarx.com/hs-fs/hubfs/Trend%2002.webp?width=94&height=30&name=Trend%2002.webp)
Dependency Confusion and Typosquatting Tactics:
Attacks designed to deploy packages with names that closely resemble legitimate and trusted libraries accounted for 28% of all attacks in January.
![Trend 03 Trend 03](https://info.checkmarx.com/hs-fs/hubfs/Trend%2003.webp?width=94&height=30&name=Trend%2003.webp)
Malware and Backdoor Injections:
Malware and backdoors embedded within compromised packages represented 16% of reported
Want this threat intelligence inside your dashboard or IDE?
Check out Checkmarx Supply Chain Threat Intelligence here.
Subscribe for Monthly Trend Alerts
Industry Recognition
![Logos_new-1 Logos_new-1](https://info.checkmarx.com/hubfs/Logos_new-1.png)