Medium CVSS: MEDIUM report

Malicious Packages Identified in the Wild: Insights and Trends from November 2024 Onward

Tracked since May 6, 2026
threat-report

CVSS Breakdown

6
CVSS Base Score
MEDIUM
Attack Vector
N/A
Requires physical access to exploit.
CIA Impact
Confidentiality N/A
Integrity N/A
Availability N/A

Insurance Impact Assessment

🛡️
Moderate Impact

Medium-severity vulnerabilities generally have limited direct impact on coverage, but accumulations of unpatched medium findings can influence underwriting decisions.

Threat report published 2025-03-10T20:29:07.925Z. Types: threat-report. FortiGuard Labs has analyzed malicious software packages detected from November 2024 to March 2025, revealing various attack techniques used to exploit system vulnerabilities. Key findings include 1,0

Assess your exposure

Is your organization vulnerable? Run a free domain exposure scan to check.

Scan Your Domain → Broker Scorecard

Related Threats

Twitter Feed - MichalKoczwara - 07-03-2025
CVSS 6 medium
Malware Filter - Phishing List - 07-03-2025
CVSS 6 medium
When Data Tools Become Dangerous: MS Power BI Links Used in Phishing Campaigns
CVSS 6 medium
SmokeLoader Malware Targets Ukraine's Auto & Banking Sectors via Open Directories
CVSS 6 medium
Not-so-SimpleHelp exploits enabling deployment of Sliver backdoor
CVSS 6 medium
← Back to Threat Feed