The npm worm started spreading 5 days ago.
-
The npm worm started spreading 5 days ago. 550+ known affected packages so far, including some with millions of downloads per week. Security vendors desperately trying to keep the lists of affected packages up-to-date, with mixed results.
Still zero word from Microsoft, the billion-dollar tech company that runs npm. Not so much as a tweet. After an entire business week. And the only real guidance that the various third-party security companies can provide, is "don't run npm at all until it's resolved".
Incredible. -
The npm worm started spreading 5 days ago. 550+ known affected packages so far, including some with millions of downloads per week. Security vendors desperately trying to keep the lists of affected packages up-to-date, with mixed results.
Still zero word from Microsoft, the billion-dollar tech company that runs npm. Not so much as a tweet. After an entire business week. And the only real guidance that the various third-party security companies can provide, is "don't run npm at all until it's resolved".
Incredible.@joepie91 I am just glad it's being called a worm and not a "supply chain contagion" or something silly like that
-
@joepie91 I am just glad it's being called a worm and not a "supply chain contagion" or something silly like that
@ansuz Lots of security companies are calling it a 'supply chain attack', unfortunately. I'm just personally insisting on calling it a worm, for the reasons that I suspect you're the last person I'd have to explain to 🙂
-
undefined Oblomov ha condiviso questa discussione
Gli ultimi otto messaggi ricevuti dalla Federazione
-
@Crissy SOMEBODY out there has the World's Biggest Butt and they should be given the recognition they deserve.
-
the navy blue iphone pro is an homage to the ZIP drive
-
@evan it needs an edgier sponsor. Maybe the crew at Antifa Advertising, Promotions and Songwriting would take a crack at it, after they run it by Legal & IP
-
The people deserve answers
-
I think it's a viable business plan to publish a book of world records for the categories that Guinness is too cautious or prudish to allow competition in, like Most Continuous Hours Operating a Chainsaw or World's Biggest Butt
-
Processo all’italiana. Aggiornamenti sul processo a Mansour, Alì e Anan (trasferito nel carcere di Melfi)
@anarchia
Riceviamo e diffondiamo: Processo all’italiana Si allungano i tempi del processo ai tre palestinesi ed Anan viene trasferito Aggiornamenti di settembre sul processo ad Anan, Alì e Mansour. Il processo ad Anan, Alì, e Mansour
-
@evan I haven't paid enough attention to answer that either, since I'm fortunate to be unaffected.
-
@mpjgregoire I think with STM it's maintenance workers who are on strike? I should probably know this.
