Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

CrowdStrike Falcon Prevents Supply Chain Attack Involving Compromised NPM Packages

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
IOAs As
Word Count
1,724
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

In July 2025, a significant supply chain attack was identified involving the compromise of five popular NPM packages, including "eslint-config-prettier," which resulted in the distribution of a malicious DLL named "Scavenger." This attack was facilitated through a credential phishing campaign targeting an NPM package maintainer, allowing attackers to publish modified versions of these packages containing the malicious code. The CrowdStrike Falcon platform successfully detected and prevented the attack by blocking the execution of the Scavenger DLL and utilizing machine learning and behavior-based indicators of attack (IOAs) to quarantine the threat. The compromised packages, which had widespread impact due to their popularity, have since been deprecated, and clean versions have been re-released. CrowdStrike emphasizes the importance of properly configured prevention policies to protect against such supply chain attacks, which often exploit vulnerabilities within widely-used open-source platforms.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 2 2,394 1,321 1 -
LLM 1 240 126 2 +5900%
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.