Showing only posts by Joseph Martins. Show all posts.

You’ve got millions of open-source software components to choose from... and so do cybercriminals

Source

Just who is running your favourite project these days? Sponsored In November 2020, the JavaScript registry npm flashed a security advisory that a library called twilio-npm harboured malicious code which could backdoor any machine it was downloaded to. Perhaps the most troubling aspect of this tale is that this …