Researchers Uncover 454,000+ Malicious Open Source Packages
Researchers Uncover 454,000+ Malicious Open Source Packages
https://www.infosecurity-magazine.com/news/454000-malicious-open-source/
Publish Date: 2026-01-28 06:00:00
Source Domain: www.infosecurity-magazine.com
Security researchers have warned that the open source ecosystem has become a “structural risk,” after revealing another surge in malicious packages last year.
Sonatype said in its 2026 State of the Software Supply Chain report that developers downloaded components 9.8 trillion times last year across Maven Central, PyPl, npm and NuGet. The challenge is that many of these contained malware or vulnerabilities.
The security vendor said it discovered 454,648 new malicious packages last year, warning that threats had evolved from “spam and stunts” into “sustained, industrialized campaigns” – many of which are state sponsored.
“Public registries provide a low-friction distribution channel, while developer machines and CI/CD pipelines provide an execution environment that often sits close to sensitive data and production access,” the report noted.
“As a result, the malicious package is increasingly not the whole attack, but the first step in a larger supply chain intrusion.”
Over half (56%) of recorded malicious packages were classified as “repository abuse,” including efforts to persuade users to click on spammy links or the harvesting of TEA tokens. A further 28% were classed as potentially unwanted apps, such as empty packages, demos with hardcoded credentials and messaging app spam bot orchestration frameworks.
Other popular categories included host information and secrets exfiltration, droppers/loaders and backdoors – indicating the multi-stage nature of attacks that begin with malicious packages.
Read more on open source threats: Shai-Hulud Worm Prowls npm to Steal Hundreds of Secrets
Threat actors are apparently turning to “social and technical mimicry” to target stretched developers.
These techniques include typosquatting and namespace confusion, toolchain masquerading and front-end workflow lures.
“Attackers increasingly rely less on individual mistakes and more on scale, momentum, and volume,” the report…
Source
