When a Zero Day Hits Your Supply Chain, Can You Answer "Are We Affected" in Minutes?

A new software supply chain attack, dubbed SANDWORM_MODE, is targeting the npm ecosystem by compromising at least 19 packages, including popular Node.js utilities and AI coding tools, and exfiltrating data using sophisticated methods like GitHub API and DNS tunneling. Organizations are challenged by the lack of enterprise-wide visibility into software dependencies, making it difficult to assess exposure quickly. In response, Arnica has introduced a feature allowing customers to filter their Software Bill of Materials (SBOM) based on active zero-day campaigns, enabling real-time identification of affected repositories and applications. This feature, available to all Arnica customers, underscores the importance of continuous visibility in software supply chains to swiftly address threats.