The npm worm started spreading 5 days ago.
-
The npm worm started spreading 5 days ago. 550+ known affected packages so far, including some with millions of downloads per week. Security vendors desperately trying to keep the lists of affected packages up-to-date, with mixed results.
Still zero word from Microsoft, the billion-dollar tech company that runs npm. Not so much as a tweet. After an entire business week. And the only real guidance that the various third-party security companies can provide, is "don't run npm at all until it's resolved".
Incredible. -
The npm worm started spreading 5 days ago. 550+ known affected packages so far, including some with millions of downloads per week. Security vendors desperately trying to keep the lists of affected packages up-to-date, with mixed results.
Still zero word from Microsoft, the billion-dollar tech company that runs npm. Not so much as a tweet. After an entire business week. And the only real guidance that the various third-party security companies can provide, is "don't run npm at all until it's resolved".
Incredible.@joepie91 I am just glad it's being called a worm and not a "supply chain contagion" or something silly like that
-
@joepie91 I am just glad it's being called a worm and not a "supply chain contagion" or something silly like that
@ansuz Lots of security companies are calling it a 'supply chain attack', unfortunately. I'm just personally insisting on calling it a worm, for the reasons that I suspect you're the last person I'd have to explain to 🙂
-
undefined Oblomov ha condiviso questa discussione
Gli ultimi otto messaggi ricevuti dalla Federazione
-
Lettera da parte del nostro compagno bak reclusx nel carcere di poggioreale
@anarchia
Riceviamo e diffondiamo: Ciao a tuttx compagnx, grazie per l’affetto e il supporto ricevuto.Lo stato italiano ha tolto a me e a altrx due compagnx il privilegio della https://www.rivoluzioneanarchica.it/lettera-da-parte-del-nostro-compagno-bak-reclusx-nel-carcere-di-poggioreale/
-
NEOMECHANICA (@neomechanica.bsky.social)
https://bsky.app/profile/neomechanica.bsky.social/post/3lz7dvdch752e
-
No Context Gillian Anderson (@contextgillian.bsky.social)
https://bsky.app/profile/contextgillian.bsky.social/post/3lzotbljuc22b
> Gillian Anderson 🚨NEW🚨
-
This post did not contain any content.
-
@max hanno già i loro "specialisti" per le "favole" 🙂
-
Direttiva anti-SLAPP: Parlamento recepisca la normativa nel provvedimento in esame alla Camera
@giornalismo
articolo21.org/2025/09/diretti…
Il presidente del Consiglio nazionale dell’Ordine dei giornalisti Carlo Bartoli è stato
-
@Gina lol I probably would, too.
-
@btp not sure if that's healthy either, but I'll take it over insomnia. 🤷🏼♀️
