In 2024, the JFrog Security Research team played a crucial role in identifying and addressing a significant increase in cybersecurity threats, with over 40,000 Common Vulnerabilities and Exposures (CVEs) reported, marking a 40% rise from previous years. Their efforts included uncovering vulnerabilities in machine learning platforms, detecting millions of malicious repositories on Docker Hub, and preventing potential supply chain attacks through secret scanning. Notably, they identified a prompt injection vulnerability in the Vanna.AI library and discovered a malicious model on Hugging Face that posed a backdoor threat. JFrog also exposed a technique to hijack 22,000 PyPI packages and reported vulnerabilities in the X.Org libX11 library that could lead to denial-of-service and remote code execution attacks. Additionally, they analyzed a supply chain attack involving the insertion of backdoor code in XZ Utils. Through these findings, JFrog emphasized the importance of proactive security measures and provided strategies to safeguard against these threats.