Hacker News new | past | comments | ask | show | jobs | submit login

It would be great if Sandworm listed these malicious repos in a text file that could be imported into a blocklist in a service like Pihole.

Iā€™m not worried about hitting these URLs but definitely worry about the less tech savvy people in my family stumbling across these accidentally




how would pihole block these though


It was too early for me when I posted this :)

There were two ideas in mind that were conflated: 1) A list for blocking the subpaths of these packages in npm that could be imported. 2) A list for blocking the malicious URLs in the repos themselves. Ie they mentioned that the repos have malicious URLs that navigate you off the page. This is where something like pihole could come in handy.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: