Research
npm Malware Targets Telegram Bot Developers with Persistent SSH Backdoors
Malicious npm packages posing as Telegram bot libraries install SSH backdoors and exfiltrate data from Linux developer machines.
By Kush Pandya - Apr 18, 2025
You're Invited: Meet the Socket team at BSidesSF and RSAC - April 27 - May 1.RSVP →
Product
Socket Now Available on Google Cloud Marketplace
Socket, the industry leader in open source security, is now available on Google Cloud Marketplace for simplified procurement and enhanced protection against supply chain attacks.
Sarah Gooding
March 21, 2025
We're excited to announce that Socket is now available on Google Cloud Marketplace! This strategic partnership allows Google Cloud customers to easily deploy our advanced security solutions while simplifying procurement and consolidating billing through their existing Google Cloud agreements.
Securing the Software Supply Chain for Google Cloud Customers#
With over 90% of modern applications built on open source, these components have become prime targets for threat actors looking to infiltrate enterprise systems through the software supply chain.
Our AI-powered threat detection for software dependencies has enabled us to detect and block over 100 supply chain attacks every week, providing real-time protection against malware and zero-day threats that legacy tools miss.
Since raising $40M in our Series B funding in October 2024, we've continued our rapid growth, now protecting over 7,800 organizations and 650,000 GitHub repositories. Our platform supports eight programming languages and handles critical use cases like license enforcement and reachability analysis, making Socket a comprehensive replacement for legacy Software Composition Analysis (SCA) tools.
Key Benefits for Google Cloud Customers#
- Simplified Procurement: Purchase Socket directly through your Google Cloud Marketplace account, streamlining the buying process and eliminating separate vendor negotiations.
- Consolidated Billing: Socket charges appear on your Google Cloud invoice, reducing administrative overhead.
- Budget Optimization: Purchases through Google Cloud Marketplace count toward your Google Cloud spending commitments.
- Rapid Deployment: Get up and running quickly with seamless integration into your Google Cloud environment.
Get Started Today#
Socket is now available for immediate purchase and deployment through the Google Cloud Marketplace.
Ready to secure your software supply chain? Book a demo with our technical experts to learn how Socket can protect your organization from the next generation of supply chain attacks.
Subscribe to our newsletter
Get notified when we publish new security blog posts!
Try it now
Ready to block malicious and vulnerable dependencies?
Related posts
Back to all posts
Security News
Python Tools Are Quickly Adopting the New pylock.toml Standard
pip, PDM, pip-audit, and the packaging library are already adding support for Python’s new lock file format.
By Sarah Gooding - Apr 18, 2025
Product
Go Support Is Now Generally Available
Socket's Go support is now generally available, bringing automatic scanning and deep code analysis to all users with Go projects.
By Peter van der Zee, Ryan Eberhardt - Apr 17, 2025