Malicious Packages & Malware Campaigns: The New Reality of the Software Supply Chain - 26 de febrero de 2026 - TecnoWebinars.com

Open source and package registries are now primary attack surfaces. What begins as a malicious or backdoored dependency on a developer workstation can quickly cascade through CI/CD pipelines and into production, creating high-blast-radius incidents that evade traditional AppSec controls. In this technical deep-dive, Amit Chita (Field CTO) and Ben Rieger (Head of DevOps & Security) present real investigations from the front lines and translate them into an operational playbook you can use tomorrow. What attendees will learn -The anatomy of a modern malicious-package campaign: entry vectors, propagation mechanisms, and why one compromised package can impact thousands of projects. -Why conventional AppSec and signature-based tools miss these attacks, and where developer workflows and CI/CD pipelines are most exposed. -Practical detection patterns and containment strategies for developer environments, build pipelines, and artifact repositories. -How to design and operate effective processes to handle modern attack campaigns.