Outer Web | Explore

Explore >> Select a destination

You are here		blog.gitguardian.com xAI Secret Leak: The Story of a Disclosure
\|	\|	www.backslash.security Shai-Hulud Strikes Again: Massive npm Attack Exposes Thousands of Secrets - Backslash	2.4 parsecs away Travel
\|	\|	A major npm supply-chain incident surfaced last week. Over 800 packages were poisoned, leading to more than 25,000 GitHub repositories being populated with stolen secrets. Projects linked to Zapier, ENS Domains, PostHog, and Postman were briefly affected.	2.4 parsecs away Travel
\|	\|	www.sysdig.com Shai-Hulud: The novel self-replicating worm infecting hundreds of NPM packages \| Sysdig	2.3 parsecs away Travel
\|	\|	A new supply chain attack against the NPM repository is using novel, self-propagating malware (also known as a worm) to continue spreading itself.	2.3 parsecs away Travel
\|	\|	thehackernews.com First Malicious MCP Server Found Stealing Emails in Rogue Postmark-MCP Package	3.0 parsecs away Travel
\|	\|	Malicious npm postmark-mcp v1.0.16 backdoored MCP server stole emails from 1,643 downloads.	3.0 parsecs away Travel
\|	\|	iliana.fyi There is no "software supply chain" - iliana.fyi	13.1 parsecs away Travel
\|		[AI summary] The article critiques the use of the 'software supply chain' metaphor in open source maintenance, arguing that it dehumanizes the work and creates unnecessary burdens on hobbyist maintainers.	13.1 parsecs away Travel