No new npm packages compromised?

Reply to No new npm packages compromised? on Fri, 15 May 2026 20:15:34 GMT

shellsharks@shellsharks.social — Fri, 15 May 2026 20:15:34 GMT

@cR0w @NuclearOatmeal Yeah if DVWA was installed on thousands of endpoints and *checks notes* also exposed to the Internet

Protean Labs | Engineering Blog

(protean-labs.io)

Reply to No new npm packages compromised? on Fri, 15 May 2026 20:10:25 GMT

cr0w@infosec.exchange — Fri, 15 May 2026 20:10:25 GMT

@shellsharks @NuclearOatmeal In fairness, isn't OpenClaw basically like a Damn Vulnerable Agent for testing and learning at this point?

Reply to No new npm packages compromised? on Fri, 15 May 2026 20:09:11 GMT

shellsharks@shellsharks.social — Fri, 15 May 2026 20:09:11 GMT

@NuclearOatmeal @cR0w OpenClaw says "my turn" - https://www.cyera.com/blog/claw-chain-cyera-research-unveil-four-chainable-vulnerabilities-in-openclaw

Reply to No new npm packages compromised? on Fri, 15 May 2026 20:07:35 GMT

cr0w@infosec.exchange — Fri, 15 May 2026 20:07:35 GMT

@Viss I saw that but no timeline and no descriptions. Could be total bummers like a lot of the "coming soon" stuff from ZDI and Talos. Fingers crossed though.

Reply to No new npm packages compromised? on Fri, 15 May 2026 20:04:04 GMT

viss@mastodon.social — Fri, 15 May 2026 20:04:04 GMT

@cR0w docker 0days coming, stuff embargoed atm. more npm tooooo https://xchglabs.com/blog/

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:55:58 GMT

da_667@infosec.exchange — Fri, 15 May 2026 19:55:58 GMT

@badsamurai @NuclearOatmeal @cR0w zero days. zero days, erryday

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:55:44 GMT

darfplatypus@infosec.exchange — Fri, 15 May 2026 19:55:44 GMT

@cR0w @nyanbinary pending analysis. Sorry y'all.

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:54:49 GMT

cr0w@infosec.exchange — Fri, 15 May 2026 19:54:49 GMT

@nyanbinary That doesn't sound like @darfplatypus ...

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:47:24 GMT

huronbikes@cyberplace.social — Fri, 15 May 2026 19:47:24 GMT

@cR0w I heard a rumor that it can but it's hard to confirm what with being on fire and all.

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:47:19 GMT

jackryder@infosec.exchange — Fri, 15 May 2026 19:47:19 GMT

@cR0w Gearing up for Monday morning...

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:43:21 GMT

nyanbinary@infosec.exchange — Fri, 15 May 2026 19:43:21 GMT

@cR0w darf asked nicely

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:41:03 GMT

badsamurai@infosec.exchange — Fri, 15 May 2026 19:41:03 GMT

@NuclearOatmeal @cR0w

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:36:08 GMT

cr0w@infosec.exchange — Fri, 15 May 2026 19:36:08 GMT

@huronbikes You mean fire can grow?!

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:29:02 GMT

huronbikes@cyberplace.social — Fri, 15 May 2026 19:29:02 GMT

@cR0w maybe all the fire is hiding some fire we don't know about

Reply to No new npm packages compromised? on Fri, 15 May 2026 19:24:25 GMT

nuclearoatmeal@beige.party — Fri, 15 May 2026 19:24:25 GMT

@cR0w

Day ain't over yet.

Reply to No new npm packages compromised? on Fri, 15 May 2026 18:46:30 GMT

rikusilvola@infosec.exchange — Fri, 15 May 2026 18:46:30 GMT

@cR0w here you go https://www.openwall.com/lists/oss-security/2026/05/15/2

Reply to No new npm packages compromised? on Fri, 15 May 2026 18:22:59 GMT

starchturrets@mastodon.social — Fri, 15 May 2026 18:22:59 GMT

@Viss @ciaranmak @cR0w well runc isn't really a very strong boundary compared to gvisor or kata containers, so I'm not too worried there

Reply to No new npm packages compromised? on Fri, 15 May 2026 18:12:33 GMT

viss@mastodon.social — Fri, 15 May 2026 18:12:33 GMT

@ciaranmak @starchturrets @cR0w oh god yes. docker 0day. shoot that shit right into my veins

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:59:43 GMT

ciaranmak@mastodon.ie — Fri, 15 May 2026 17:59:43 GMT

@starchturrets @cR0w I will report back because tbh if I don't end up out in the pub this evening I'm probably gonna test this one out

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:55:42 GMT

starchturrets@mastodon.social — Fri, 15 May 2026 17:55:42 GMT

@ciaranmak @cR0w I'm not so sure how bad this is in comparison to the embargoed KVM one at https://xchglabs.com/blog/

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:54:17 GMT

mccovican@infosec.exchange — Fri, 15 May 2026 17:54:17 GMT

@cR0w BleepingComputer are getting slow in their old age (likewise).

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:51:42 GMT

cr0w@infosec.exchange — Fri, 15 May 2026 17:51:42 GMT

@McCovican I think that one was published yesterday, which is like three years ago in this week time.

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:51:02 GMT

mccovican@infosec.exchange — Fri, 15 May 2026 17:51:02 GMT

@cR0w Shenanigans ahoy! https://www.bleepingcomputer.com/news/security/popular-node-ipc-npm-package-compromised-to-steal-credentials/

Reply to No new npm packages compromised? on Fri, 15 May 2026 17:46:03 GMT

ciaranmak@mastodon.ie — Fri, 15 May 2026 17:46:03 GMT

@starchturrets @cR0w noice, mom and dads malware sandbox got REKT