Strobesstrobes
Blog

Security Insights

Deep dives, expert analysis, and practical guidance on exposure management, adversarial validation, and the future of AI-driven exposure management.

Checkmarx and Bitwarden supply chain attack: Your CI/CD pipeline is the attack surface
CybersecurityVulnerability Intelligence

Checkmarx and Bitwarden Just Showed That Your Pipeline Is the Attack Surface

How the Checkmarx supply chain attack compromised Bitwarden's CLI pipeline in four minutes, what was stolen, and the program design gap that made it possible.

Apr 29, 20267 min
Strobes VI Supply Chain Attacks Ransomware Groups Threat Actors - Featured Image
Product UpdatesVulnerability Intelligence

Strobes VI Now Tracks Supply Chain Attacks, Ransomware Groups, and Threat Actors

224,487 supply chain incidents. 1,251 threat actors. Ransomware groups tracked in real time. Strobes VI now provides the threat intelligence layer that powers proactive exposure management, starting with the lessons from the Axios npm compromise.

Apr 3, 202611 min
Axios npm Supply Chain Attack 83M Weekly Downloads Compromised
CTEMVulnerability Intelligence

Axios npm Supply Chain Attack: 83M Weekly Downloads Compromised by Cross-Platform RAT

On March 31, 2026, attackers compromised the axios npm maintainer account and published backdoored versions deploying a cross-platform RAT to macOS, Windows, and Linux. Full incident breakdown with IOCs, detection guidance, and real-time AI-driven response.

Mar 31, 20269 min
How One Phishing Email Compromised 18 npm Packages and Billions of Installs
Application Security

How One Phishing Email Compromised 18 npm Packages and Billions of Installs

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 popular JavaScript packages with over 2.6 billion weekly downloads. By tricking a maintainer into revealing credentials and 2FA codes, attackers injected crypto-stealing malware i

Sep 9, 20255 min
Top 10 Cybersecurity Companies in United States (2025 Ranking)
Cybersecurity

Top 10 Cybersecurity Companies in United States (2025 Ranking)

Cyberattacks in the United States aren’t slowing down. From billion-dollar ransomware hits to stealthy supply chain breaches, every month brings a new headline. And the cost is staggering. The average US data breach now costs over $9.4 million, the highest anywhere in the world. In this environment,

Sep 1, 202522 min
Top 5 Vulnerabilities for March 2024: A Closer Look at the XZ Utils Supply Chain Attack
Vulnerability IntelligenceVulnerability Management

Top 5 Vulnerabilities for March 2024: A Closer Look at the XZ Utils Supply Chain Attack

March may have roared in like a lion, but for cybersecurity professionals, it was more like a backdoor sneaking into a critical utility. This month, we've seen some serious contenders, but one in particular has sent shockwaves through the open-source software (OSS) community: CVE-2024-3094, a sneaky

Apr 2, 20245 min