Pelle Wessman

@voxpelli
646 Followers
835 Following
4.2K Posts
Web developer, +10 years of web dev, creator, non-influencer, open source contributor, #nodejs user, #IndieWeb participant, #TypesInJs advocate. Lives in southernmost Sweden 🇸🇪
GitHubhttps://github.com/voxpelli
Blueskyhttps://bsky.app/profile/voxpelli.com
Bloghttps://voxpelli.com
Profilehttps://kodfabrik.se
Pelle Wessman2d ago
IAintShootinMis2d ago

#NPM #axios maintainer has lost control of their account. Malicious versions 1.14.1 and 0.30.4 have been published which include a RAT.

NPM has pulled the effected versions and the payload. Time to clean up and see if you were effected.

StepSecurity has an awesome write up on this issue with #iocs

Link follows this toot.

#CTI #infosec #node #cybersecurity #security #nodejs #js #malware

Pelle Wessman2d ago
blazr2d ago
lol. black hats actually discovered they could just use the frontdoor with #NPMhttps://www.stepsecurity.io/blog/axios-compromised-on-npm-malicious-versions-drop-remote-access-trojan
axios Compromised on npm - Malicious Versions Drop Remote Access Trojan - StepSecurity

Hijacked maintainer account used to publish poisoned axios releases including 1.14.1 and 0.30.4. The attacker injected a hidden dependency that drops a cross platform RAT. We are actively investigating and will update this post with a full technical analysis.

Pelle WessmanMar 26
Ivory by Tapbots Mar 26

Ivory v2.5 is now available in the App Store!

What's new:
- Audio Playback (including support for posting audio files)
- Configure 4 Swipe Gestures for Posts
- Support for Viewing Rich Text Posts
- Various bug fixes.

Download the update here:
https://apps.apple.com/us/app/ivory-for-mastodon-by-tapbots/id6444602274

Pelle WessmanMar 19

RE: https://mastodon.social/@stroughtonsmith/116255419547147086

This is why I find https://setapp.com/ to be a great thing – on MacOS and iOS alike.

It lowers the threshold to get started with a subscription.

@stroughtonsmith Any thoughts on adding Pastel to Setapp?

Pelle WessmanMar 17
Here to say that Eurosky.social seems to have issues. Good to have an account here as well then 🥳
Pelle WessmanFeb 17
BleepingComputerFeb 17

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local files and execute code remotely.

https://www.bleepingcomputer.com/news/security/flaws-in-popular-vscode-extensions-expose-developers-to-attacks/

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local files and execute code remotely.

BleepingComputer
Pelle WessmanJan 26
@ecosystems @andrewnez There's quite a large discrepancy between https://github.com/neostandard/neostandard/network/dependents?dependent_type=PACKAGE and https://packages.ecosyste.ms/registries/npmjs.org/packages/neostandard/dependent_packages – do you know how that comes?
Pelle WessmanJan 17

Insane at the USA is now going to be punishing us because they want a piece of land that’s not theirs.

Not ok.

https://apnews.com/article/denmark-greenland-us-trump-4ad99ea3975a8b62d37bd04961feda55

Trump says some European imports will face a 10% tariff over Greenland spat

President Donald Trump says he'll impose a 10% import tax starting in February on goods from eight European nations because of their opposition to American control of Greenland. His threat sets up a potentially dangerous test of U.S. partnerships in Europe. Denmark, Norway, Sweden, France, Germany, the United Kingdom, the Netherlands and Finland would face the tariff. Trump says the rate would climb to 25% on June 1 if no deal was in place for “the Complete and Total purchase of Greenland” by the United States. European leaders said the tariffs “would undermine transatlantic relations and risk a dangerous downward spiral.”

AP News
Pelle WessmanJan 17
Claes de VreeseJan 17
Copenhagen town hall square, Denmark right now. Massive solidarity with Greenland demonstrations. Source: dr.dk
Pelle WessmanJan 3
Patricia Aas 🐢🏳️‍🌈Jan 3
«Expert on US attack on Venezuela: 'We should be enormously concerned in Denmark'» «we in Denmark should be extremely concerned when we see how far the Americans are willing to go militarily.» Nobody is looking at this as an ally, everyone is looking at this as a potential target.

Ekspert om USAs angreb af Vene...
Ekspert om USAs angreb af Venezuela: 'Vi skal være enormt bekymrede i Danmark'

USAs militære angreb på Venezuela lørdag morgen er et klart varsel om, at USA med Donald Trump i spidsen er parat til at tage store militære skridt, lyder det fra dansk ekspert.

B.T.