…

🚨 𝐃𝐢𝐝 𝐭𝐡𝐞 𝐀𝐱𝐢𝐨𝐬 𝐬𝐮𝐩𝐩𝐥𝐲 𝐜𝐡𝐚𝐢𝐧 𝐚𝐭𝐭𝐚𝐜𝐤 𝐜𝐚𝐭𝐜𝐡 𝐲𝐨𝐮𝐫 𝐭𝐞𝐚𝐦… | by MOAMEN REZK - Freedium Milestone: 20GB Reached We’ve reached 20GB of stored data — thank you for helping us grow! Patreon Ko-fi Liberapay Close < Go to the original 🚨 𝐃𝐢𝐝 𝐭𝐡𝐞 𝐀𝐱𝐢𝐨𝐬 𝐬𝐮𝐩𝐩𝐥𝐲 𝐜𝐡𝐚𝐢𝐧 𝐚𝐭𝐭𝐚𝐜𝐤 𝐜𝐚𝐭𝐜𝐡 𝐲𝐨𝐮𝐫 𝐭𝐞𝐚𝐦… On March 31, one of npm's most trusted libraries was hijacked and silently installed a Remote Access Trojan on developer machines… MOAMEN REZK Follow ~1 min read · April 9, 2026 (Updated: April 9, 2026) · Free: Yes On March 31, one of npm's most trusted libraries was hijacked and silently installed a Remote Access Trojan on developer machines worldwide. The malware deleted itself after — leaving no trace. And the scariest part? It happened through a tool developers trusted completely. That's the world we're building in now. The tools you trust are becoming the attack surface. So when I built something to fix this — I made one promise first: 🔒 Your data never touches our servers. Ever. No tokens stored. No repo data. No secrets. No logs. Nothing. Not even temporarily. Your GitHub credentials stay yours — we never see them, we never save them, we never want them. Because how can you trust a security tool that doesn't respect your security? Connect your GitHub once. Every repo, every dependency, every vulnerability — detected automatically. Fix it in milliseconds. And then forget we exist — because we left no trace of your data either. Privacy isn't a feature we added. It's the reason we built this. Something is coming Sunday. 👀 #Cybersecurity #SupplyChain #npm #DeveloperSecurity #Privacy #ZeroDataStorage #cybersecurity #ai #ai-agent #bug-bounty #penetration-testing Reporting a Problem Sometimes we have problems displaying some Medium posts. If you have a problem that some images aren't loading - try using VPN. Probably you have problem with access to Medium CDN (or fucking Cloudflare's bot detection algorithms are blocking you).