One day after they were uploaded, RubyGems discovered and removed two malicious packages that had been designed to steal cryptocurrency from unsuspecting users by installing a clipboard hijacker, reports Bleeping Computer, citing research by open-source security firm Sonatype. Fortunately, while the packages were downloaded a total of 142 times, “At this time, none of the cryptocurrency addresses have received any funds.”…
Tag: packages
Richard Stallman Answers Questions at EmacsConf 2020
All the videos have now appeared online for the talks at this year’s virtual EmacsConf 2020, “the conference about the joy of Emacs, Emacs Lisp, and memorizing key sequences.” And among them are an appearance by 67-year-old Richard Stallman, reminding the audience he’d created the first Emacs editor in 1976 “with some help from Guy Steele,” then created GNU Emacs in…
Malicious npm Packages Caught Installing Remote Access Trojans
The security team behind the “npm” repository for JavaScript libraries removed two npm packages this Monday for containing malicious code that installed a remote access trojan (RAT) on the computers of developers working on JavaScript projects. From a report: The name of the two packages was jdb.js and db-json.js., and both were created by the same author and described themselves as…
US Postal Service Announces a Nationwide Digital ‘Operation Santa’
For 108 years Americans have helped their postal service perform “Operation Santa.” But this year’s program will be fully digital and nationwide, reports CNN: The program allows children and families to write letters to Santa, which will then be processed and shared online beginning on December 4 at USPSOperationSanta.com. Once the letters are live, anyone in the U.S. can go online…
Hulu Hikes Prices of Live TV Packages by $10 per Month
Hulu’s live TV bundle is getting more expensive. From a report: The new prices are $10 per month higher than Hulu’s current fees and will go into effect Dec. 18, 2020. The higher rates apply to both current and new subscribers. Hulu began notifying subscribers of the price hikes Monday. Under the new pricing, the baseline Hulu + Live TV with…
Linux Mint Introduces Its Own Take On the Chromium Web Browser
Mint’s programmers, led by lead developer, Clement “Clem” Lefebvre, have built their own take on Google’s open-source Chromium web browser. ZDNet reports: Some of you may be saying, “Wait, haven’t they offered Chromium for years? Well, yes, and no. For years, Mint used Ubuntu’s Chromium build. But then Canonical, Ubuntu’s parent company, moved from releasing Chromium as an APT-compatible DEB package…
SiFive Unveils Plan For Linux PCs With RISC-V Processors
SiFive today announced it is creating a platform for Linux-based personal computers based on RISC-V processors. VentureBeat reports: Assuming customers adopt the processors and use them in PCs, the move might be part of a plan to create Linux-based PCs that use royalty-free processors. This could be seen as a challenge to computers based on designs from Intel, Advanced Micro Devices,…
Three npm Packages Opened Remote-Access Shells on Linux and Windows Systems
“Three JavaScript packages have been removed from the npm portal on Thursday for containing malicious code,” reports ZDNet. “According to advisories from the npm security team, the three JavaScript libraries opened shells on the computers of developers who imported the packages into their projects.” The shells, a technical term used by cyber-security researchers, allowed threat actors to connect remotely to the…
SpaceX’s First Military Contracts: One-Hour Cargo Deliveries By Rocket and Missile-Tracking Satellites
“The Pentagon is contracting Elon Musk’s SpaceX to develop rockets that can deliver packages anywhere on the planet in under an hour,” reports Vice: One of the things that makes the U.S. military a dominant global fighting force is its ability to move troops, weapons, and supplies quickly to where they’re needed. C-17 transport planes soar across the globe delivering troops…
Coinbase Offers Severance Package to Employees Unsatisfied With ‘Apolitical’ Mission
An anonymous reader shares a report: Coinbase CEO Brian Armstrong sent his employees a letter telling them to get in line with a new company “culture shift,” offering those unwilling to do so a “generous separation package.” Armstrong sent the letter, which CoinDesk obtained, to Coinbase employees on Wednesday, stating the time has come to have a “difficult conversation” over his…