Olivia
Online
albertomiranda
@albertomiranda
Another web developer. Creator of and one incredible little kid :D
Buenos Aires, Argentina
Joined December 2008
517 Following
221 Followers
1.2K Posts
North Korea is targeting npm maintainers -- not for crypto, but for write access to packages downloaded trillions of times a year.
Several Socket engineers were targeted in this campaign -- myself, @ljharb, @jdalton, and others. None of us fell for the bait. Unfortunately, the axios maintainer did. No shame in that -- these aren't phishing emails. They're weeks-long ops with fake companies, fake Slack workspaces, and spoofed meeting platforms built with realistic Zoom/Teams interfaces using the official SDKs for realism.
Other confirmed targets: @matteocollina (Fastify, Pino, Undici, Node.js TSC Chair), @wesleytodd (Express TC), @voxpelli (mocha, neostandard).
The common thread? High-trust maintainers with publish access to packages that sit deep in everyone's dependency tree.
The attack chain: build rapport over weeks, schedule a video call, fake an audio error, prompt the target to install a "fix." That fix is a RAT. Once it's on your machine, they have your .npmrc tokens, browser sessions, AWS creds, keychain. 2FA doesn't matter. OIDC publishing doesn't matter. Game over.
Security researcher @tayvano_ linked this to UNC1069, a DPRK-nexus group Mandiant has tracked since 2018. Why social engineer one rich person when you can compromise one maintainer and reach millions of machines?
This is the threat model now. If you maintain popular packages, act accordingly. If you use open source (and you certainly do), act accordingly.
Full writeup: https://t.co/bNKdrLmwMn
Having fun while learning how to create AI pipelines 😹
https://t.co/v9qAcpibWN
#AI #developerlife #development #software #art #CatsLover #CatsOnX #cats #Gatos
Who to follow
Scot Forshaw
@softwareguru1
Founder and CTO, TORIDION | Creating the Foundations for Cognition-Aware Data Systems |Top 10 Thought Leader - AI Infrastructure, Quantum & Predictive Analytics
Kody Technolab
@kody_technolab
We design intelligent #robots, AI systems, and #software platforms that transform operations and scale automation across industries worldwide.
👉 @kody_robots
👑'105 115 119 105 109' VENOME 
@darkeagle70
☕️⚛ High on caffeine, currently implementing #ModuleFederation in #reactjs with dynamic imports.
❤️ Loving it!
@Novartis Someone in the supply chain is still removing Fingolimod from its original refrigerated package in the mid of our summer season. Today we had 37ºC! This is crazy and nobody seems to be able to solve the problem. Can you guys help?!
@Novartis This is really worrying... If the #Gilenya #fingolimod package is not stored following the lab's temp requirements, could this cause the medication to stop working as expected? If this is the case, this might already be affecting a lot of people in Argentina 😢
@Novartis The official response from Argentina's office matches the documentation: "Store GILENYA at room temperature between 68°F to 77°F (20°C to 25°C).", BUT... Somehow the medication still goes to the pharmacy without any cooling with +35ºC ambient temp! What can we do?
Awesome fake email server for testing 📨😎
https://t.co/OVMvCkbJ7J
🚀 Exciting news! I'm ready to share the project I've been working on for the past 7 months!
Introducing ✨ Socket ✨
⚡️ Search millions of open source packages
🔒 Detect suspicious package updates in real-time
🛡 Block software supply chain attacks
https://t.co/NOyVIh3pNr
I was reviewing my collaborations to @WebTorrentApp and it feels so nice to have been able to contribute there! Nothing crazy, but we can still use those features today 😀
Another amazing project that has the potential to reshape the Internet 🌎
https://t.co/Paev4OPY97
You can find Webamp here:
https://t.co/NkeFBhZ87U
If you ever used Winamp you'll love it!
@elonmusk Next step: Solar crypto mining facility 😉
☀️⚡️🪙
@laguachafagaite Era otro Alberto Miranda LOL!
Most Popular Users
Elon Musk
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.5M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.9M followers
Neymar Jr
@neymarjr
62.6M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers