Malicious Open Source Packages Surge in Q2 2025
Malicious Open Source Packages Surge in Q2 2025

Malicious Open Source Packages Surge in Q2 2025

News summary

In the second quarter of 2025, malicious open-source software packages surged by 188%, with over 16,000 new threats identified across major ecosystems such as npm, PyPI, and Maven Central. Data exfiltration was the primary motive, with most packages designed to steal credentials, API keys, and personal information, while destructive malware targeting data corruption doubled in prevalence. Cryptomining malware declined to represent just 5% of threats as attackers shifted focus to credential theft and long-term infiltration. The Lazarus Group, linked to North Korea, was associated with over 100 malicious packages, highlighting the role of state-backed actors. A new trend in browser-based threats emerged, exemplified by the RedDirection campaign, which leveraged popular Chrome and Edge extensions to hijack sessions and spy on more than 2.3 million users. These developments emphasize the escalating risks across software supply chains and the need for heightened vigilance among developers, security teams, and end users.

Story Coverage
Bias Distribution
100% Right
Information Sources
df996e72-9933-4037-bf43-26f5ba21bcd1
Right 100%
Coverage Details
Total News Sources
2
Left
0
Center
0
Right
1
Unrated
1
Last Updated
19 days ago
Bias Distribution
100% Right
Related News
Daily Index

Negative

26Serious

Neutral

Optimistic

Positive

Ask VT AI
Story Coverage
Subscribe

Stay in the know

Get the latest news, exclusive insights, and curated content delivered straight to your inbox.

Present

Gift Subscriptions

The perfect gift for understanding
news from all angles.

Related News
Recommended News