The security thread
The security thread
Out of context: Reply #31
- Started
- Last post
- 39 Responses
- monNom1
Do you use 3rd party/open-source scripts in your website and application builds? Should you trust them?
This guy lays out a shockingly simple method to spread malware and steal user data by taking advantage of developer laziness: Offer free opensource plugins, npm dependencies, etc.
- Related: Hotjar said recently they will stop collecting keystrokes and form-input data in their recordings. IE: Your analytics was/is keylogging your users.monNom