Typosquatting with Adam Baldwin
Episode 9 · December 11th, 2017 · 50 mins 30 secs
About this Episode
Wherein we discuss typosquatting and other security matters with Adam Baldwin, of Lift security and the Node Security Platform. We cover what kind of exploits people are trying, speculate about how blockchains may well be the answer, and unsuccessfully attempt to start a turf war between various package managers.
Episode Links
- ^Lift Security
- npm registry
- Typo.js on GitHub
- 52% of All JavaScript npm Packages Could Have Been Hacked via Weak Credentials
- Have I been pwned?
- Protect your npm account with two-factor authentication
- Typosquatting programming language package managers
- Shellshock
- Dependency CI
- The Update Framework
- package.community
- crossenv malware on the npm registry
- Node Security Platform
- Yarn
- Adam Baldwin on Twitter
- Adam Baldwin on GitHub