In Q1 2025, 17,954 open-source malware packages were identified, more than doubling from the same period last year. Data exfiltration malware accounted for 56% of these threats, highlighting a growing concern over sensitive information being compromised through malicious open-source components.