Sophisticated, Highly-Targeted Attacks Continue to Plague npm

@expertmadman@sh.itjust.works · 2 years ago

Sophisticated, Highly-Targeted Attacks Continue to Plague npm

mo_ztt ✅ · 2 years ago

Article? It’s just the image

@expertmadman@sh.itjust.works · 2 years ago

I screwed up submission

https://blog.phylum.io/sophisticated-highly-targeted-attacks-continue-to-plague-npm/

mo_ztt ✅ · 2 years ago

All good, you can still go back and edit it to fix it.

@sugar_in_your_tea@sh.itjust.works · 2 years ago

Yup, this isn’t Reddit.

mo_ztt ✅ · 2 years ago

Yeah sure, you can edit post titles, but you have to remember that we don’t yet have an unusable chat or a very limited selection of mascot-themed avatars. CHRIST WHAT WERE WE THINKING

mo_ztt ✅ · edit-2 2 years ago

Also, why hasn’t he updated the story yet, and why are people upvoting the nonexistent story… I am being 100% sincere when I say that seeing a community of people upvote a story, when the actual link to the story is broken so you can’t read it, makes me rethink what type of people make up that community and whether I want to be a part of it.

IDK, maybe it’s some federation thing where he updated the story a while ago and the change just doesn’t propagate properly or quickly or something.

Edit: Nope, not a federation thing, as of T plus 9 hours. What are y’all upvoting?

@expertmadman@sh.itjust.works · 2 years ago

https://blog.phylum.io/sophisticated-highly-targeted-attacks-continue-to-plague-npm/

tl;dr several packages were recently published to npm that appear to be subtle command and control. Behaviors of the infrastructure seem to mimic those recently identified by Phylum as being nation state activity from North Korea.