Sabotage: Code added to popular NPM package wiped files in Russia and Belarus
A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.
Sabotage: Code added to popular NPM package wiped files in Russia and Belarus
A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.
Sabotage: Code added to popular NPM package wiped files in Russia and Belarus Description
A developer has been caught adding malicious code to a popular open-source package that wiped files on computers located in Russia and Belarus as part of a protest that has enraged many users and raised concerns about the safety of free and open source software. The application, node-ipc, adds remote interprocess communication and neural networking capabilities to other open source code libraries. As a dependency, node-ipc is automatically downloaded and incorporated into other libraries, including ones like Vue.js CLI, which has more than 1 million weekly downloads. A deliberate and dangerous act Two weeks ago, the node-ipc author pushed a new version of the library that sabotaged computers in Russia and Belarus, the countries invading Ukraine and pro
Sabotage: Code added to popular NPM package wiped files in Russia and Belarus FAQ
Common questions about Sabotage: Code added to popular NPM package wiped files in Russia and Belarus including features, pricing, alternatives, and user reviews.
Sabotage: Code added to popular NPM package wiped files in Russia and Belarus is A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.. It is a Application Security solution designed to help security teams with Bug Bounty, Open Source, Security Vulnerability.
FEATURED
Password manager with end-to-end encryption and identity protection features
VPN service providing encrypted internet connections and privacy protection
Fractional CISO services for B2B companies to accelerate sales and compliance
Stay Updated with Mandos Brief
Get the latest cybersecurity updates in your inbox
TRENDING CATEGORIES
POPULAR
A threat intelligence aggregation service that consolidates and summarizes security updates from multiple sources to provide comprehensive cybersecurity situational awareness.
Security platform that provides protection, monitoring and governance for enterprise generative AI applications and LLMs against various threats including prompt injection and data poisoning.
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
Weekly cybersecurity newsletter for security leaders and professionals