this post was submitted on 13 Aug 2023
13 points (84.2% liked)

Cybersecurity

5671 readers
147 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 1 year ago
MODERATORS
 
top 7 comments
sorted by: hot top controversial new old
[–] [email protected] 9 points 1 year ago (1 children)

Article? It's just the image

[–] [email protected] 7 points 1 year ago (1 children)
[–] [email protected] 4 points 1 year ago (1 children)

All good, you can still go back and edit it to fix it.

[–] [email protected] 4 points 1 year ago (1 children)
[–] [email protected] 2 points 1 year ago (1 children)

Yeah sure, you can edit post titles, but you have to remember that we don't yet have an unusable chat or a very limited selection of mascot-themed avatars. CHRIST WHAT WERE WE THINKING

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Also, why hasn't he updated the story yet, and why are people upvoting the nonexistent story... I am being 100% sincere when I say that seeing a community of people upvote a story, when the actual link to the story is broken so you can't read it, makes me rethink what type of people make up that community and whether I want to be a part of it.

IDK, maybe it's some federation thing where he updated the story a while ago and the change just doesn't propagate properly or quickly or something.

Edit: Nope, not a federation thing, as of T plus 9 hours. What are y'all upvoting?

[–] [email protected] 5 points 1 year ago

https://blog.phylum.io/sophisticated-highly-targeted-attacks-continue-to-plague-npm/

tl;dr several packages were recently published to npm that appear to be subtle command and control. Behaviors of the infrastructure seem to mimic those recently identified by Phylum as being nation state activity from North Korea.