Ideas, lessons, and tactics from the team behind Panther.
Threat Research
Detection & Response
Inside DPRK’s npm malware factory: 108 packages, 261 versions, and a 31-day campaign wave
Michael
Baker
Detection & Response
Sober Up! npm Typosquat Delivers Winos4.0 Implant via Multi-Stage PowerShell Dropper
Alessandra
Rizzo
Detection & Response
Mapping the Infrastructure Behind the kube-health-tools Supply Chain Malware
Alessandra
Rizzo
Detection & Response
Enrichment Baselines: A Statistical Framework for Threat Detection
Zaynah
Smith-DaSilva
Detection & Response
False Claims: An npm Supply Chain Campaign Impersonates Known US Insurance Provider
Alessandra
Rizzo
Detection & Response
Tracking an OtterCookie Infostealer Campaign Across npm
Alessandra
Rizzo
Detection & Response
Polymarket Trader Funds at Risk: DPRK npm Package Steals Wallet Keys and Installs SSH Backdoor
Michael
Baker
Detection & Response
jsonspack: Multi-Tenant Node.js RAT — DPRK Supply Chain Campaign
Michael
Baker
Detection & Response
Tunnel Vision: Supply Chain Attack Targets Kubernetes via npm and PyPI
Alessandra
Rizzo
Detection & Response
Introducing Unique Value Thresholds
Ariel
Ropek
