Explore tweets tagged as #SocketSecurity
CactusCon happens every year thanks to great people, talks, and sponsors. Thanks to our new friends @SocketSecurity for joining us as a Sidekick Sponsor! They empower dev teams to secure dependencies and ship with confidence across every project. #cc14
0
1
5
ICYMI: $SOL | @SocketSecurity has identified a malicious @googlechrome extension named Crypto Copilot. The app has been has been injecting hidden $SOL fees into legitimate transactions for months, siphoning off the funds of users and sending them to the attackers wallet. The
1
0
2
"Inside the GitHub Infrastructure Powering North Korea’s Contagious Interview npm Attacks" published by @SocketSecurity. #ContagiousInterview, #NPM, #OtterCookie, #DPRK, #CTI
1
6
19
Happy to share I'm getting back to my roots in open source, this time around on the side of protecting software development! If you haven't yet, you should install @SocketSecurity for your teams: https://t.co/9zd1SrIbUF
0
3
10
A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with #malware essentially hiding in plain sight in embedded QR codes. #Cybersecurity @SocketSecurity
https://t.co/09XNQdwJeD
1
1
5
Join me next week at the @WorkOS Enterprise Ready Conf. will be speaking on a panel on all things security & how developers can take back control of their software supply chain. If you're attending, chat with me & the @SocketSecurity team IRL! https://t.co/c2fcw5v4CF
0
1
3
So excited about today's launch! If you combine Certified Patches with @SocketSecurity reachability, you have a faster, frictionless path towards reaching zero exploitable CVEs. Get in touch if you want early access.
🚀 Day Two of Socket Launch Week! We’re launching Socket Certified Patches—a new way to eliminate vulnerabilities instantly without upgrading your package versions or pulling in risky new code. Tiny, human-reviewed fixes that give teams a clean path to zero exploitable CVEs.
0
3
5
1
0
3
with many thanks to @feross and @SocketSecurity for first reporting the infected packages.
0
0
11
THE expert on npm security - @feross, founder of @SocketSecurity We talked all things worm, and zoomed out to figure out why npm is more susceptible to this vs other languages. And covered how to protect yourself! https://t.co/Lp3YI6F4Bz
1
2
21
I shared an Uber ride with @feross and I thought his new reachability analysis tool (@SocketSecurity) was neat. So I pulled out my phone and asked him to repeat say it again on camera
2
7
27
Announcing the remaining #BSidesLDN2025 Gold sponsors, we are grateful for their support! @SocketSecurity Shinobi Security @sublime_sec
@TenableSecurity
@tines_hq
@tracebit_com
#SocketSecurity #ShinobiSecurity #SublimeSecurity #Tenable #Tines #Tracebit
#Security #BSides #London
0
5
9
New research from Socket: We uncover how North Korean hackers are using npm, GitHub, and Vercel together to spread OtterCookie malware, adding 197 malicious npm packages. https://t.co/4OkxTzxKeS
#JavaScript #malware
1
14
48
Excellent work from the @SocketSecurity team!
Ten npm packages, using typosquatting to imitate popular legitimate packages, were found to spread credential-stealing malware hidden under four layers of obfuscation, @SocketSecurity reported. #cybersecurity #infosec #ITsecurity #CISO
0
3
10
🚀 So excited to be working with @ljharb at @SocketSecurity!
Excited to announce I've joined @SocketSecurity as an Open Source Architect :-)
1
1
23
Thank you to the sponsors of #BSidesSeattle2025! @googlecloud @wiz_io @pomerium_io @EndorLabs @SocketSecurity #Kodem @promptfoo @Microsoft @rapid7 @SecInnovation. @bsidesseattle @SecurityBSides #BSidesSeattle
0
0
4
@SocketSecurity We (PostHog) have confirmed we do not publish to Maven directly, and they've simply mirrored the bad version over. We removed the malicious version from npm more than 24 hours ago.
1
0
5