Wouldn’t have been that hard to write a rule that matches the repositories being... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		testdelacc1 14 days ago \| parent \| context \| favorite \| on: GitLab discovers widespread NPM supply chain attac... Wouldn’t have been that hard to write a rule that matches the repositories being created by this malware. It literally does the same thing to every victim.

philipwhiuk 14 days ago [–]

Sure, but until the malware spreads quickly you don't know you need the rule.

testdelacc1 14 days ago | [–]

True. But this was the “second coming” of the exact same malware from a few months ago.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact