About
Founder of Socket. Our mission is to improve security and privacy on the web. Socket is a…
Activity
-
🚨 In case you're a (former) Google Domains customer and missed the news: Squarespace domain hijacks enabled by email address exploit on migrated…
🚨 In case you're a (former) Google Domains customer and missed the news: Squarespace domain hijacks enabled by email address exploit on migrated…
Shared by Feross Aboukhadijeh
-
Squarespace Domain Hijacks Enabled by Email Address Exploit on Migrated Accounts: “Contrary to early reports, the attacks were not caused by user…
Squarespace Domain Hijacks Enabled by Email Address Exploit on Migrated Accounts: “Contrary to early reports, the attacks were not caused by user…
Liked by Feross Aboukhadijeh
-
It was tough to keep this under wraps, and many have been asking what I've been up to since I left Lyft. Well, the story began when Oege de Moor…
It was tough to keep this under wraps, and many have been asking what I've been up to since I left Lyft. Well, the story began when Oege de Moor…
Liked by Feross Aboukhadijeh
Experience & Education
More activity by Feross
-
The npm+node.js combo solved software reuse at scale by allowing the same module to exist as two different versions in the same process. This feature…
The npm+node.js combo solved software reuse at scale by allowing the same module to exist as two different versions in the same process. This feature…
Liked by Feross Aboukhadijeh
-
I'm looking forward to attending DEF CON with the Anthropic team. We'll be hosting a happy hour on August 9 to meet the community…
I'm looking forward to attending DEF CON with the Anthropic team. We'll be hosting a happy hour on August 9 to meet the community…
Liked by Feross Aboukhadijeh
-
The npm package registry is under attack again by a spam campaign.
The npm package registry is under attack again by a spam campaign.
Shared by Feross Aboukhadijeh
-
We’re detecting a massive automated spam campaign hitting npm right now with an influx of garbage packages, a reprisal of the tea[.]xyz crypto spam…
We’re detecting a massive automated spam campaign hitting npm right now with an influx of garbage packages, a reprisal of the tea[.]xyz crypto spam…
Liked by Feross Aboukhadijeh
-
Exaggerated vulnerability ratings take a toll on open source maintainers and can have disruptive downstream effects. https://lnkd.in/eUB_Ng7S #NodeJS…
Exaggerated vulnerability ratings take a toll on open source maintainers and can have disruptive downstream effects. https://lnkd.in/eUB_Ng7S #NodeJS…
Liked by Feross Aboukhadijeh
-
Overblown CVEs are a plague on open source. Latest example: The `node-ip` maintainer made his library read-only on GitHub to protest an inflated CVE…
Overblown CVEs are a plague on open source. Latest example: The `node-ip` maintainer made his library read-only on GitHub to protest an inflated CVE…
Shared by Feross Aboukhadijeh
-
Such a great event and community of security leaders! Love spending time with these amazing people.
Such a great event and community of security leaders! Love spending time with these amazing people.
Liked by Feross Aboukhadijeh
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore More