#Sonatype Finds 700% Average Increase in #OpenSource Supply Chain #Attacks
To capitalize on weaknesses in upstream open source ecosystems, cybercriminals continue to target organizations through open source repositories. They contribute #malware - infected #software components that are distributed downstream and ingested by applications that businesses and consumers rely on. As of this publication date, Sonatype’s industry-leading repository Firewall has identified more than 55,000 newly published packages as malicious in open source repositories over the past year, and nearly 95,000 over the past three years. Firewall is part of the Sonatype Nexus platform, the world’s most complete software supply chain management solution. #DevSecOps teams worldwide rely on the Nexus platform to automate policy enforcement, without slowing innovation.
#attack #danger #security #repository #news #cybercrime #economy