LSW Posted October 27, 2017 Report Posted October 27, 2017 jQuery Official Blog Hacked — Stay Calm, Library is Safe! https://thehackernews.com/2017/10/jquery-hacked.html Quote The official blog of jQuery—most popular JavaScript library used by millions of websites—has been hacked by some unknown hackers, using the pseudonym "str0ng" and "n3tr1x." jQuery's blog website (blog.jquery.com) runs on WordPress—the world's most popular content management system (CMS) used by millions of websites. While there is no evidence yet if the server (code.jquery.com) that host jQuery file was also compromised, The Hacker News took a screenshot (as shown above) and can confirm that the hackers merely published a simple blog post to deface the website. 1 Quote
administrator Posted October 27, 2017 Report Posted October 27, 2017 That is the one big problem with open source software ... it is more likely to be hacked since loser hackers can snoop through the code. Quote
LSW Posted October 27, 2017 Author Report Posted October 27, 2017 On the oither hand, being open source, more good folks are snooping through it as well and any bad code is quickly found and fixed. It seems counter intuitive, but in the security community open source is considered a positive, because the code can be reviewed at all times. Code that is closed source is looked upon cautiously because we don't know what all it does and if there are poor proactices, vulnerabilities or even back doors in place. So as we have touched on good and bad, ALWAYS download open source software from known and trusted developers and they often include a signature you can check against to ensure it is the real deal, other wise I can download opensource, stick my own coade in and offer it for download. Quote
administrator Posted October 27, 2017 Report Posted October 27, 2017 Good points. Pros and cons to so many things. Stef Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.