D2DO300: Open Source Malware!
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “D2DO300: Open Source Malware!” inside PodZeus.
In this episode of Day 2 DevOps, hosts Ned Bellavance and Kyler Middleton dive deep into the rising threat of open source malware, particularly within NPM and AI agent ecosystems. Guest Jen Geil, co-founder of Open Source Malware, reveals how malicious actors are exploiting the open source supply chain through account takeovers, transitive dependencies, and AI-driven infiltration. She highlights a major 2025 incident involving the NX package, where attackers used post-install scripts to weaponize AI tools like Cloud and Gemini, tricking them into scraping developer secrets and exposing 3,000 repositories. The episode underscores how AI's ease of use and high permission levels have created new attack vectors, with malicious agents now infiltrating marketplaces like OpenClaw. Despite the alarming pace of innovation in cyberattacks—such as using invisible Unicode characters to hide malicious code—Geil emphasizes that the situation is not hopeless. She introduces the Open Source Malware database, a community-driven, publicly accessible threat intelligence platform designed to track and expose malicious packages, domains, and AI skills. The episode concludes with actionable advice for developers and organizations: implement dependency pinning, cool-down policies, and cross-functional security teams, while advocating for systemic changes in platform design and continuous education across all departments, not just engineering. The episode delivers a sobering yet hopeful message: while the speed of AI and open source development has outpaced traditional security measures, collective vigilance, community-driven tools, and proactive defense strategies can still make a difference. The key takeaways include slowing down the adoption of new packages, adopting automated scanning tools integrated with the Open Source Malware API, and expanding security training beyond software engineers to include finance, marketing, and sales teams. The hosts and guest stress that the responsibility isn't just on individuals but requires organizational commitment and structural changes in how open source ecosystems are governed.
Malware in open source packages, especially NPM, has surged—over 90% of open source malware is now found in NPM packages, with a sharp increase since mid-2025.
Attackers are increasingly using AI tools as attack vectors by tricking locally installed AI agents (like Cloud, Gemini, Amazon Q) into scraping secrets via malicious post-install scripts.
Implementing a 'cool-down policy'—delaying package updates for 24–72 hours—can prevent rapid exploitation of newly published malicious packages.
The Open Source Malware database (opensourcemalware.com) is a free, community-driven threat intelligence platform offering real-time detection of malicious packages, domains, and AI skills.
Invisible Unicode characters and deceptive documentation in VS Code extensions and AI skills are now being used to hide malicious code, making manual review insufficient.
…and 3 more takeaways available in PodZeus
The Rise of Machine-First Malware
“They are creating malware in ways that are more designed to trick machines rather than trick humans.”
NPM: The Epicenter of Open Source Malware
“NPM is the source of over 90% of open source malware.”
The NX Attack: AI as a Rogue Agent
“They got these AIs to be helpful. And once they flipped over, they started scraping the developer machines for secrets.”
AI Agent Marketplaces: The New Attack Frontier
The rise of AI agent marketplaces like OpenClaw has led to hundreds of malicious agents being published. These agents operate with full user permissions, effectively giving attackers admin access to personal and corporate accounts.
Defensive Strategies for Developers
Practical advice for developers: pin dependencies, implement cool-down policies, and use sandboxing. The episode stresses that slowing down adoption can block many malware campaigns.
“NPM is the source of over 90% of open source malware.”
“They got these AIs to be helpful. And once they flipped over, they started scraping the developer machines for secrets.”
“This is not something that is hopeless.”
Hosts
Guest
Jen Geil
person
NPM
other
Open Source Malware
organization
Paul McCurry
person
NX
other
OpenClaw
other
VS Code
other
OSV
other
GitHub Actions
other
Endor Labs
organization
PP103: FireMon Brings Clarity to Firewall Rule Chaos (Sponsored)
The Everything Feed - All Packet Pushers Pods • 56m • 3/31/2026
HW074: Build Your Own Access Point with Bradley Wegner
The Everything Feed - All Packet Pushers Pods • 26m • 3/31/2026
NAN118: The Importance of the Data Behind AI in Networks (Sponsored)
The Everything Feed - All Packet Pushers Pods • 43m • 4/1/2026
D2DO299: The State of Platform Engineering and DevEx
The Everything Feed - All Packet Pushers Pods • 43m • 4/1/2026
N4N052: Multicast Part 2
The Everything Feed - All Packet Pushers Pods • 1h 25m • 4/2/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “D2DO300: Open Source Malware!” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime