NPM package compromise and what recent exploits teach us about threat intelligence overload

In this episode of Red Canary Office Hours, Keith and Dave dive into the persistent issue of malicious NPM packages, highlighting recent research and the long-standing problem of open-source software within the developer supply chain.

The discussion also highlights the common problem of threat intelligence overload, using recent headlines like the "ESXi hacking spree" and Microsoft SharePoint as examples.

Catch future episodes of Red Canary Office Hours here: https://bit.ly/3EJSx5P

Chapters
00:00 - 00:40 Introduction
00:41 - 02:31 Welcome to Red Canary Office Hours!
02:32 - 17:17 NPM Package Compromise
17:18 - 32:58 Threat Intelligence Overload
32:59 - 33:30 See you next week!

Follow us:
  / redcanary  
  / redcanary  
---
Red Canary stops cyber threats no one else does, so organizations can fearlessly pursue their missions. We do it by delivering managed detection and response (MDR) across enterprise endpoints, cloud workloads, network, identities, and SaaS apps. As a security ally, we define MDR in our own terms with unlimited 24×7 support, deep threat expertise, hands-on remediation, and by doing what’s right for customers and partners.

Subscribe to our YouTube channel for frequently updated, how-to content about Atomic Red Team, threat hunting in security operations, MDR or Managed Detection and Response, and using the MITRE ATT&CK® framework.