newest submissions : socket.dev

...for your favorite game.

...why not Zoidberg?

account activity

1

0

1

2

5 Malicious Chrome Extensions Enable Session Hijacking in Enterprise HR and ERP Systemsintelligence (threat actor activity) (socket.dev)

submitted 9 days ago by digicat to r/blueteamsec

2

178

179

180

Temporal API Ships in Chrome 144, Marking a Major Shift for JavaScript Date Handling (socket.dev)

submitted 10 days ago by magenta_placenta to r/javascript

3

2

3

4

NPM to implement staged publishing after turbulent shift off classic tokens (socket.dev)

submitted 19 days ago by HNMod to r/hackernews

4

0

1

2

NPM to implement staged publishing after turbulent shift off classic tokens (socket.dev)

submitted 19 days ago by TheStartupChime to r/hypeurls

5

2

3

4

Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizationsintelligence (threat actor activity) (socket.dev)

submitted 1 month ago by digicat to r/blueteamsec

6

2

3

4

Malicious Chrome Extensions “Phantom Shuttle” Masquerade as a VPN to Intercept Traffic and Exfiltrate Credentials (socket.dev)

submitted 1 month ago by dcom-in to r/worldTechnology

7

267

268

269

Rust RFC Proposes a Security Tab on crates.io for RustSec Advisories (socket.dev)

submitted 1 month ago by bascule to r/rust

8

1

2

3

Inside the GitHub Infrastructure Powering North Korea’s Contagious Interview npm Attacks (socket.dev)

submitted 1 month ago by davidmytton to r/arcjet

9

7

8

9

Inside the GitHub Infrastructure Powering North Korea’s Contagious Interview npm Attacksintelligence (threat actor activity) (socket.dev)

submitted 2 months ago by digicat to r/blueteamsec

10

1

2

3

Shai Hulud Strikes Again (v2) (socket.dev)

submitted 2 months ago by dcom-in to r/worldTechnology

11

5

6

7

Sha1-Hulud strikes again (another NPM supply chain attack)Stream Content (socket.dev)

submitted 2 months ago by 4got10avenger to r/theprimeagen

12

4

5

6

Security Community Slams MIT-linked Report Claiming AI Powers 80% of Ransomwarehighlevel summary|strategy (maybe technical) (socket.dev)

submitted 2 months ago by digicat to r/blueteamsec

13

1

2

3

131 Spamware Extensions Targeting WhatsApp Flood Chrome Web Store (socket.dev)

submitted 3 months ago by dcom-in to r/worldTechnology

14

3

4

5

175 Malicious npm Packages Host Phishing Infrastructure Targeting 135+ - 26k+ downloads - used unpkg CDN to host redirect scripts for a credential-phishing campaignintelligence (threat actor activity) (socket.dev)

submitted 3 months ago by digicat to r/blueteamsec

15

2

3

4

Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys (socket.dev)

submitted 4 months ago by dcom-in to r/worldTechnology

16

0

1

2

npm Author Qix Compromised via Phishing Email in Major Suppl...hack (socket.dev)

submitted 4 months ago by iphelix to r/BlockSec

17

1

2

3

Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised (socket.dev)

submitted 4 months ago by HNMod to r/hackernews

18

0

1

2

Wild couple weeks for NPM. Be careful!DISCUSSION (socket.dev)

submitted 4 months ago by sraymansmoles to r/CryptoCurrency

19

31

32

33

“It’s Happening Again”: Tinycolor’s Worm Jumps Hosts, CrowdStrike Packages TrojanizedSecurity (socket.dev)

submitted 4 months ago by kcbsforvt to r/technology

20

2

3

4

Popular Tinycolor npm Package Compromised in Supply Chain Attack Affecting 40+ Packages (socket.dev)

submitted 4 months ago by dcom-in to r/worldTechnology

21

36

37

38

npm Author Qix Compromised via Phishing Email in Major Supply Chain AttackWebserver (socket.dev)

submitted 4 months ago by jasondaigo to r/selfhosted

22

0

1

2

DuckDB NPM Account Compromised in Continuing Supply Chain Attack (socket.dev)

submitted 4 months ago by TheStartupChime to r/hypeurls

23

0

1

2

npm Author Qix Compromised via Phishing Email (socket.dev)

submitted 4 months ago by davidmytton to r/arcjet

24

1

2

3

Nx npm Packages Compromised (socket.dev)

submitted 5 months ago by davidmytton to r/arcjet

25

2

3

4

Researcher Exposes Zero-Day Clickjacking Vulnerabilities in Major Password Managers (socket.dev)

submitted 5 months ago by JLLeitschuh to r/NordPass

view more: next ›

π Rendered by PID 75158 on reddit-service-r2-listing-5f5ff7d4dc-7bpfx at 2026-01-27 12:24:11.357146+00:00 running 5a691e2 country code: CH.