Posts
25
Following
0
Followers
1
Tech news related to free and open source software
tech-news

Tech News

Edited 4 months ago

Massive NPM Worm Attack

GitLab has discovered an NPM worm that is impacting a massive number of Git repositories and npm projects, ex-filtrating sensitive data such as cloud API keys and other security credentials.

According to Wiz, the scope of the attack is massive:

  • 27% of code and cloud environments
  • 700 npm packages
  • 25,000 git repositories
  • 500 GitHub users
  • 775 compromised GitHub access tokens
  • 373 AWS credentials
  • 300 GCP credentials
  • 115 Azure credentials

#npm #javascript #git

0
2
0
tech-news

Tech News

BentoPDF

The release notes for BentoPDF v1.7.4 contain trojan horse API keys to the OpenAI, Anthropic, and Gemini platforms that link to a RickRoll.

0
0
0
tech-news

Tech News

Edited 4 months ago

The ZBT-2

Home Assistant has released the Home Assistant Connect ZBT-2, the successor to the ZBT-1. The ZBT-2 has a USB adapter and a precisely tuned antenna for connecting Zigbee, Thread, or Matter networks to Home Assistant. It is available immediately at a cost for $49.

0
0
0
Show older
About NoVaLUG

The Northern Virginia Linux Users Group (NoVaLUG)

We are a curious, informal, and friendly mix of IT professionals, hobbyists, students, and others with an interest in Linux, Free and Open Source software, and open knowledge. The Northern Virginia Linux Users Group (NoVaLUG) is the oldest LUG in the Northern VA area and likely in the whole of US, established in 1993.

Obtaining an Account

Accounts on this server are limited to members of NoVaLUG. To get an invite link, you must do one of the following:

  1. Ask for a link at one of our meetings.
  2. Send a message on our mailing list asking for a link.
  3. Request an invite link in our Signal chat group.

Service Information

Users on this server may be referred to with the novalug.org domain name (e.g. "foo@novalug.org" or "@foo@novalug.org"). However, when using URLs, the full hostname of akk.novalug.org must be used (e.g. "https://akk.novalug.org/foo").

To use this server with other clients, such as mobile apps, use the full host name of akk.novalug.org.

If you prefer the "classic" Mastodon UI, go here.

Code of Conduct

Our rules are simple.

  1. Be kind, be courteous.
  2. No porn.
  3. No spam.
  4. No harassment.
  5. No illegal behavior.
  6. Users must be 13 years of age or older.
We reserve the right to reject, delete, moderate and take any other action necessary. Simply put, don't be a jerk!