WhiteSource Acquires Diffend to Provide Software Supply Chain Security USA - English Share this article TEL AVIV, Israel and BOSTON, April 20, 2021 /PRNewswire/ -- WhiteSource, the leader in open source security and management, today announced it has acquired Diffend, an open source malware security and threat detection solution. All of Diffend's current commercial offerings will now be available for free under its new name WhiteSource Diffend. Through the acquisition, WhiteSource is now able to offer an advanced platform for mitigating software supply chain risk. Recent software supply chain attacks demonstrate that application security needs have gone beyond detection to include continuous prevention. "Scanning for malicious packages after they are installed is too late," says Maciej Mensfeld, founder of Diffend. "Organizations must start blocking malicious packages before they are downloaded or installed. WhiteSource Diffend is designed for near-invisible, exception-based alerting on software supply chain security threats that doesn't interfere with developers' work." Mensfeld added, "in the past week alone, the Diffend platform has been responsible for detecting and reporting 60 suspicious packages to Rubygems, all of which have now been removed, benefiting all open source users." Maciej Mensfeld joins WhiteSource as Senior Product Manager for Software Supply Chain Security.