How a SaaS Firm Prevented a Novel Ransomware Attack

An attacker published a malicious npm package masquerading as a legitimate AWS tool, using an image file to hide C2 instructions. Learn how Veracode’s multi-layered defense stopped the ransomware attack at the source, preventing widespread data encryption and service disruptions.

Download the Case Study

Enforce Blocking at the Registry Level

Veracode Package Firewall blocked the malicious package from being downloaded by using policy rules that flagged associated malicious indicators, including suspicious domains and known payload patterns.

Validate Packages with Threat Intelligence

Veracode’s malicious package protection capabilities validated the package against a database of emerging threat intelligence, automatically quarantining the payload and providing a contextual risk score with clear remediation steps.

Automate Secure Upgrades

Veracode SCA identified related libraries sharing similar indicators, recommended hardened versions, and automated pull requests to ensure dependencies aligned with security policy baselines, reinforcing long-term resilience.

Get started today

Eliminate the most risk with the least amount of effort

Contact Us

Get in touch and secure your software

Read More

Request a 

Live Demo

Schedule your demo

Read More

Veracode Blog

Learn from Veracode’s latest blogs

Read More