Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Socket Firewall free install-time malicious package blocker for npm, Python, and Rust

Security Tool/Service
First reported
Last updated
Happening score
H score 20
1 unique sources, 1 articles

Summary

Hide ▲

Socket released Socket Firewall, a free tool that blocks malicious packages at install time across npm, Python, and Rust, reducing supply-chain risk for developers. The service matters because it also intercepts malicious transitive dependencies, not just top-level packages.

Related Happenings

Packagist package.json hook supply chain attack campaign

Campaign
First: 23.05.2026 19:07 Last: 23.05.2026 19:07 Sources 1

About this happening: A **coordinated supply chain attack campaign** compromised **eight Packagist packages**, creating repeat execution risk for projects that install the affected versions. The malici...

Open Happening

Deadcode09284814 malicious npm packages delivering Phantom Bot and infostealers

Malware Activity
First: 18.05.2026 11:57 Last: 18.05.2026 11:57 Sources 1

About this happening: Four **npm** packages published by **deadcode09284814** were found delivering **information-stealing malware** and **Phantom Bot** DDoS capability, putting installers at risk of *...

Open Happening

Inactive maintainer account 'atiertant' hit by network compromise

Incident
First: 15.05.2026 20:10 Last: 15.05.2026 20:10 Sources 1

About this happening: The **inactive maintainer account 'atiertant'** for **node-ipc** was **compromised**, enabling malicious package releases that could steal credentials from downstream installation...

Open Happening

Mini Shai-Hulud npm supply-chain malware wave

Malware Activity
First: 12.05.2026 14:07 Last: 12.05.2026 14:07 Sources 1

About this happening: The **Sha1-Hulud** npm supply-chain campaign is a fresh **second wave** of **Shai-Hulud**-style activity that has compromised **hundreds of npm packages**. The malware runs during...

Open Happening

BufferZoneCorp sleeper-package supply chain campaign

Campaign
First: 01.05.2026 12:43 Last: 01.05.2026 12:43 Sources 1

About this happening: The **BufferZoneCorp** software supply chain campaign is pushing **malicious Ruby gems and Go modules** that can steal credentials, tamper with **GitHub Actions**, and persist on...

Open Happening

Timeline

  1. 02.10.2025 16:07 2 articles · 7mo ago

    Socket releases Socket Firewall for install-time malicious package blocking

    Mitigation Patch Update

    Socket released Socket Firewall, a free tool that blocks malicious packages at install time across npm, Python, and Rust ecosystems. The tool also prevents package managers from fetching malicious transitive dependencies, extending protection beyond top-level packages in developer installation workflows.

    Show sources
    Open in new tab