Schedule a Demo

Mend.io Blog

Next-Gen Vulnerability Assessment: AWS Bedrock Claude in CVE Data Classification
Maciej Mensfeld Jul 30, 2025

Next-Gen Vulnerability Assessment: AWS Bedrock Claude in CVE Data Classification

LATEST
Learn more
Filter & Search
npm Massive Dependency Confusion Attack

Single Author Uploaded 168 Packages to npm as Part of a Massive Dependency Confusion Attack

Tamir Ben Ari, Tom Abai Jun 20, 2022
Open Source Security

Discover how a single author uploaded 168 malicious npm packages in a dependency confusion attack. Learn how Mend blocked these threats.

Read More
blog blog image

3 Critical Best Practices of Software Supply Chain Security

Adam Murray Jun 20, 2022
Software Supply Chain

Learn about the 3 critical best practices of software supply chain security to protect your organization from malicious packages.

Read More
3 new GitHub features to boost your security 1 1

3 New GitHub Features to Reinforce Your Code, Repo, and Dependency Security

Lisa Haas Jun 16, 2022
Dependency Updates

Learn about the latest GitHub features to enhance your code security and dependency management. Stay ahead of vulnerabilities.

Read More
cloud architecture security

Cloud Security Architecture: A Practical Guide

Adam Murray Jun 9, 2022
Container Security

Learn about Cloud Security Architecture. Understand the importance, core principles, and threats to secure your cloud environment effectively.

Read More
Integration of Diffend via Artifactory plugin

Introducing Mend Supply Chain Defender Integration with JFrog Artifactory

Adam Murray Jun 3, 2022
Software Supply Chain

Discover how Mend Supply Chain Defender integrates with JFrog Artifactory to block malicious software threats in your code base.

Read More

Mend Epitomizes RSA 2022 Theme, “Transform”

Adam Murray May 27, 2022

Learn how Mend is bringing RSA 2022’s “transform” theme to life with its own transformation, what that means for customers, and what we’re anticipating from the conference.

Read More
Brand Announce navy 1920 1080 scaled 1

From WhiteSource to Mend—A Rebrand Journey

Adam Murray May 26, 2022

From WhiteSource to Mend—A Rebrand Journey. Follow our evolution from open source to all code application security.

Read More
Brand Announce navy 1920 1080 scaled 1

WhiteSource is Now Mend: You Code, We Cure

Rami Sass May 25, 2022
Application Security

Mend, formerly WhiteSource, focuses on automating application security with a remediation-first approach for open source and custom code.

Read More
Vulnerability Remediation A Practical Guide

Vulnerability Remediation: A Practical Guide

Adam Murray May 17, 2022
Application Security

Practical guide to vulnerability remediation for developers & security teams. Learn how to detect, prioritize, fix, & monitor vulnerabilities.

Read More
Blog

New Typosquating Attack on npm Package ’colors’ Using Cross language Technique Explained

Maria Korlotian, Tamir Ben Ari May 12, 2022
Malicious Packages

Discover the latest typosquatting attack on the npm package 'colors' using a cross-language technique.

Read More
RubyGems Critical CVE 2022 29176

Impact Analysis: RubyGems Critical CVE-2022-29176 Unauthorized Package Takeover 

Lisa Haas May 10, 2022
Malicious Packages

Impact Analysis of RubyGems Critical CVE-2022-29176 Unauthorized Package Takeover. Learn about the vulnerability, impact assessment, and more

Read More
What is the NIST Supply Chain Risk Management Program

What is the NIST Supply Chain Risk Management Program?

Adam Murray May 9, 2022
Open Source Security

Discover the NIST Supply Chain Risk Management Program.. Learn how to manage cybersecurity risks in digital supply chains effectively.

Read More
Blog Why Vulnerability Management Must Go Beyond CVSS to Priority Scoring

Why Vulnerability Management Must Go Beyond CVSS to Priority Scoring

Adam Murray May 4, 2022
Open Source Security

Learn why vulnerability management must go beyond CVSS to priority scoring for better open source security and remediation prioritization.

Read More
news AWS target

AWS Targeted by a Package Backfill Attack

Tamir Ben Ari May 1, 2022
Application Security

Discover how AWS was targeted by a malicious package backfill attack, the methods used by attackers, and how to protect against such attacks.

Read More
Blog image 2 Assessment Tools

5 Vulnerability Assessment Scanning Tools: 5 Solutions Compared

Adam Murray Apr 28, 2022
Application Security

Discover the top 5 vulnerability assessment scanning tools and learn how to prioritize and remediate vulnerabilities to secure your org.

Read More
Artboard 53

Threat Actor Deploys Malicious Packages Using Hex Encoding and Delayed Execution

Adam Murray, Tamir Ben Ari Apr 13, 2022
Malicious Packages

Discover how threat actors are using hex encoding and delayed execution to deploy malicious packages. Learn how to protect your applications.

Read More
Previous
1 ... 9 10 11 12 13 14 15 ... 30
Next

Subscribe to our Newsletter

Join our subscriber list to get the latest news and updates

Thanks for signing up! 

© 2025 Mend.io (White Source Ltd.) All rights reserved.