CIO Influence
CIO Influence News Security

Phylum Launches Partner Program, Introduces Threat Feed of Malicious Open-Source Packages

Phylum Launches Partner Program, Introduces Threat Feed of Malicious Open-Source Packages

Phylum, the software supply chain security company announced the launch of its partner program and the availability of its threat feed of open-source malware. Vendors looking to enhance their DevSecOps offerings can easily integrate with the Phylum platform and now incorporate the new threat feed into their products. The threat feed identifies when open-source packages contain malware and can be used to inform package approval processes or be correlated with other sources to contextualize threats.

Read More About Cioinfluence Interview: CIO Influence Interview with Michael Berthold, CEO at KNIME

“Since the launch of Phylum, we have made it a priority for users to benefit from our technology directly in the tools they are already using. We’ve now turned that commitment into a dedicated partner program that makes Phylum’s open-source malware findings more accessible in the security tools used to curate and correlate threat data,” said Aaron Bray, co-founder and CEO of Phylum.

Recently, Phylum was the first to report a series of suspicious npm publications belonging to what appeared to be a highly targeted attack. A security alert from GitHub then publicly attributed this cyberattack to threat actors with strong ties to North Korean objectives. Phylum’s threat feed provides organizations with indicators of compromise for software supply chain attacks in easily consumed formats for existing security tools. This novel data source helps organizations determine if they are impacted and users could be alerted by a phylum partner, depending on the tool.

Latest Cioinfluence InterviewCIO Influence Interview with Joe Ramieri, VP of North America at Instabase

Phylum currently accepts the following types of partners:

  • Tech Alliance: Phylum complements many security and DevOps tools to better protect developers and applications from software supply chain security attacks.
  • OEM: Phylum can seamlessly integrate its platform or threat feed of open-source malware to add software supply chain features and capabilities to any product.
  • Reseller: Phylum works with resellers to bolster their software supply chain security portfolios and add value to SCA, EDR, CNAPP, security analytics and observability products.

Browse The Complete Interview About Cioinfluence: CIO Influence Interview with Filip Verloy, Field CTO for the EMEA Region at Noname Security

 [To share your insights with us, please write to sghosh@martechseries.com] 

Related posts

iMerit Launches Expert-in-the-Loop AI Data Solution iMerit DataStudio

CIO Influence News Desk

IIM Calcutta launches APSPM Programme With Eruditus

CIO Influence News Desk

Aidoc Partners With Novant Health, Providing Imaging AI to Expedite Treatment for Patients

CIO Influence News Desk