Security

6965 readers

5 users here now

Confidentiality Integrity Availability

founded 6 years ago

MODERATORS

gary_host_laptop@lemmy.ml

New IronWorm malware hits 36 packages in npm supply-chain attack (www.bleepingcomputer.com)

submitted 3 weeks ago by yogthos@lemmy.ml to c/security@lemmy.ml

3 comments fedilink hide all child comments

top 3 comments

sorted by: hot top controversial new old

[–] gary_host_laptop@lemmy.ml 3 points 3 weeks ago (1 children)

is this like the second or third npm vulberability in a few months?

permalink
fedilink
source
hideshow 2 child comments

[–] yogthos@lemmy.ml 3 points 3 weeks ago

welcome to the wonderful world of npm

permalink
fedilink
source

[–] iByteABit@lemmy.ml 2 points 3 weeks ago

Didn't they add a new security measure just a week ago that now requires additional manual verification from the developer before a new version is distributed by npm?

permalink
fedilink
source