Home
/
Companies
/
Socket
/
Hacker News
Socket on HN
20 posts with 25+ points since 2022
Filters
Min points:
1
10
25
50
100
250
500
Since:
2022
2023
2024
2025
2026
Posts by Month (20 total)
Hacker News Posts
Search:
Title
Points
Comments
Date
Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised
1,231
--
2025-09-16
NPM to implement staged publishing after turbulent shift off classic tokens
205
--
2026-01-07
The Everything NPM Package
192
--
2024-01-06
Show HN: Socket – Secure your JavaScript supply chain
133
--
2022-03-01
The push to ban ransom payments is gaining momentum
127
--
2024-05-22
Social engineering campaign targeting tech employees spreads through NPM malware
114
--
2023-07-25
Active NPM supply chain attack: Tinycolor and 40 Packages Compromised
85
--
2025-09-15
German Court Fines Security Researcher for Reporting Company's Vulnerabilities
77
--
2024-01-23
OpenJS: "XZ Utils Cyberattack Likely Not an Isolated Incident"
65
--
2024-04-17
What's Going on Inside Your Node_modules Folder?
64
--
2022-03-02
Chinese devs are storing 1000s of eBooks on GitHub and NPM
62
--
2022-11-06
Unverified NPM Account Takeover Vulnerability for Sale on Dark Web Forum
53
--
2024-07-06
Prettier NPM Packages Compromised in Supply Chain Attack
45
--
2025-07-19
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
42
--
2024-06-26
Curl Project and Go Security Teams Reject CVSS as Broken
40
--
2025-01-24
AI Hallucinations Are Fueling a New Class of Supply Chain Attacks
31
--
2025-04-12
Gem.Coop – Community-Run Alternative to Rubygems.org, Led by Former Maintainers
30
--
2025-10-06
Libxml2 Maintainer Ends Embargoed Vulnerability Reports, Citing Unsustainable
27
--
2025-06-18
DuckDB NPM Account Compromised in Continuing Supply Chain Attack
27
--
2025-09-09
Automated Spam Campaign Floods GitHub/NPM with 1000s of Garbage Packages
25
--
2024-07-12
