Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
|
from
login
Malicious Chrome Extensions "Phantom Shuttle" Masquerade as a VPN to Intercept
(
socket.dev
)
1 point
by
feross
14 days ago
|
past
The Supply Chain Nightmare Before Deployment
(
socket.dev
)
2 points
by
feross
20 days ago
|
past
|
1 comment
Malicious NuGet Package Typosquats Popular .NET Tracing Library to Steal Wallet
(
socket.dev
)
3 points
by
feross
22 days ago
|
past
Deno 2.6 and Socket: Supply Chain Defense in Your CLI
(
socket.dev
)
3 points
by
feross
24 days ago
|
past
Software Engineering Daily Podcast: Feross on AI, Open Source, and Supply Chain
(
socket.dev
)
1 point
by
feross
25 days ago
|
past
NPM Revokes Classic Tokens, as OpenJS Warns Maintainers About OIDC Gaps
(
socket.dev
)
3 points
by
feross
27 days ago
|
past
|
1 comment
Rust RFC Proposes a Security Tab on Crates.io for RustSec Advisories
(
socket.dev
)
2 points
by
feross
28 days ago
|
past
Malicious Crate Mimicking 'Finch' Exfiltrates Credentials via a Hidden
(
socket.dev
)
2 points
by
feross
32 days ago
|
past
Malicious Go Packages Impersonate Google's UUID Library and Exfiltrate Data
(
socket.dev
)
7 points
by
feross
32 days ago
|
past
November CVEs Fell 25% YoY, Driven by Slowdowns at Major CNAs
(
socket.dev
)
2 points
by
feross
32 days ago
|
past
Critical Security Vulnerability in React Server Components
(
socket.dev
)
4 points
by
feross
33 days ago
|
past
Scaling Socket from Zero to 10k Organizations
(
socket.dev
)
2 points
by
feross
35 days ago
|
past
The GitHub Infrastructure Powering North Korea's Contagious Interview NPM Attack
(
socket.dev
)
10 points
by
giuliomagnifico
38 days ago
|
past
|
1 comment
The GitHub Infrastructure Powering North Korea's Contagious Interview NPM
(
socket.dev
)
2 points
by
feross
40 days ago
|
past
Shai-Hulud Strikes Again, Again. (NPM Supply Chain Attack)
(
socket.dev
)
3 points
by
pvtmert
43 days ago
|
past
|
1 comment
Webhook Events for Alert Changes
(
socket.dev
)
2 points
by
feross
46 days ago
|
past
Socket Certified Patches: One-Click Fixes for Vulnerable Dependencies
(
socket.dev
)
2 points
by
feross
49 days ago
|
past
Another Round of Tea Protocol Spam Floods NPM, but It's Not a Worm
(
socket.dev
)
1 point
by
feross
52 days ago
|
past
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover
(
socket.dev
)
2 points
by
feross
54 days ago
|
past
Socket at Black Hat Europe and BSides London 2025
(
socket.dev
)
3 points
by
feross
56 days ago
|
past
Malicious NuGet Packages Deliver Time-Delayed Destructive Payloads
(
socket.dev
)
3 points
by
feross
60 days ago
|
past
How Enterprise Security Is Adapting to AI-Accelerated Threats
(
socket.dev
)
2 points
by
feross
62 days ago
|
past
MIT-Linked Report Claiming AI Powers 80% of Ransomware
(
socket.dev
)
1 point
by
DyslexicAtheist
66 days ago
|
past
|
1 comment
Security Community Slams MIT-Linked Report Claiming AI Powers 80% of Ransomware
(
socket.dev
)
5 points
by
bediger4000
66 days ago
|
past
|
2 comments
The Changelog Podcast: Practical Steps to Stay Safe on NPM
(
socket.dev
)
2 points
by
feross
67 days ago
|
past
Ruby Core Team Assumes Stewardship of RubyGems and Bundler, Former Maintainers
(
socket.dev
)
3 points
by
feross
68 days ago
|
past
|
1 comment
NPM Typosquatted Packages Deploy Multi-Stage Credential Harvester
(
socket.dev
)
3 points
by
feross
70 days ago
|
past
Socket Firewall Enterprise: Flexible, Configurable Protection For
(
socket.dev
)
3 points
by
feross
74 days ago
|
past
New CNAPulse Dashboard Tracks CNA Activity and Disclosure Trends
(
socket.dev
)
2 points
by
feross
74 days ago
|
past
GitHub Actions Scanning Support
(
socket.dev
)
2 points
by
feross
75 days ago
|
past
More
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
