Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised
1109 by jamesberthoty | 910 comments on Hacker News.
A lot of blogs on this are AI generated and such as this is developing, so just linking to a bunch of resources out there: Socket: - Sep 15 (First post on breach): https://socket.dev/blog/tinycolor-supply-chain-attack-affect... - Sep 16: https://socket.dev/blog/ongoing-supply-chain-attack-targets-... StepSecurity – https://ift.tt/OwhTs2i... Aikido - https://ift.tt/jk3zScT... Ox - https://ift.tt/RrOW0Nd... Safety - https://ift.tt/fo2Kzd1 Phoenix - https://ift.tt/4Y8m1Tw Semgrep - https://ift.tt/X3sLfud...
-
Learn Postgres at the Playground – Postgres compiled to WASM running in browser 543 by samwillis | 144 comments on Hacker News.
-
NSA, NIST, and post-quantum crypto: my second lawsuit against the US government 486 by trulyrandom | 143 comments on Hacker News.
-
U.S. Postal Service starts nationwide electric vehicle fleet, buying 9,250 EVs 444 by lxm | 336 comments on Hacker News.