Open Source Malware Index Q3 2025: 140% Surge in High-Severity Attacks
Category:Threat Intelligence / Malware
Sonatype’s Q3 2025 report reveals a 140% increase in open-source malware, with over 34,000 new malicious packages identified. The Shai-Hulud worm and npm package hijackings highlight a shift toward high-impact supply chain threats targeting developers and CI/CD systems. Financial and government organizations faced a 218% increase in attacks compared to Q1.
CORTEX Protocol Intelligence Assessment
Business Impact: Escalating malware within open-source ecosystems increases supply chain risk. Technical Context: Adversaries exploit dependency confusion and typosquatting to compromise build pipelines.
Strategic Intelligence Guidance
- Implement SBOM scanning for npm, PyPI, and Maven packages.
- Adopt repository firewalls and AI-based anomaly detection.
- Enforce developer code signing and provenance checks.
- Conduct dependency audits monthly.
Vendors
Threats
Targets
Impact
Data Volume:N/A
Financial:N/A
Intelligence Source: Open Source Malware Index Q3 2025: High-Severity Attacks Surge | Oct 16, 2025