THREAT OPS › Threat News › Q2 2026 Open Source Malware Index
Q2 2026 Open Source Malware Index
<div class="hs-featured-image-wrapper"> <a class="hs-featured-image-link" href="https://www.sonatype.com/blog/q2-2026-open-source-malware-index-attackers-abuse-developer-trust" title=""> <img alt="Image with text "Sonatype, Open Source Malware Index Q2 2026"" class="hs-featured-image" src="https://www.sonatype.com/hubfs/blog_osmiQ22026.png" style="width: auto !important; float: left; m
Attributed threat actors
- Lazarus GroupG0032
MITRE ATT&CK techniques
- Cloud ServicesT1021.007
- CredentialsT1589.001
- Malicious PackageAML.T0011.001
Indicators of compromise
- c8ecb7bf007e197781883d29b672714dmd5
- 956a1876eff0bcdc53fee23e89142ea2md5
- track.hubspot.comdomain
- 2fwww.sonatype.comdomain
- 252fwww.sonatype.comdomain