Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
github.com/laboratoryforplayfulcomputation/alpacaml
The wearable toolkit is an all purpose wearable that can be used with a variety of different activities. A bluetooth speaking device, in this case the BBC Microbit, is placed on the users body. This board is then connected to an IOS app on the users iPhone. The code for this app is what you see in this Github. This app will allow the user to video tape themselves, or have another person record them, while recieve sensor data from the bluetooth device, which for now is accleration data. The app will graph the data, and with the help of machine learning, learn to classify actions based off of the users criteria. The app could tell you if your swing is too slow, if you are extending to far out to one side, and more, not just with sports but in other fields as well. Please note that work is still in program so the app is far from fully developed.
FAQs
Unknown package
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.