Techly NewsGet the app

Get the latest tech news

Politic opinion in your Software is a grave Security Threat


The software that has a political opinion implies a bias and high risk for security. Avoid software with a "position" today, so you don't get hacked tomorrow.

This is the story of CVE-2022-23812, a famous NPM package node-ipc with over a million weekly downloads that started deleting all data and overwriting all files on developers’ machines to protest the Ukraine war in March 2022. As you can see, the “opinion” or “political view” of a company is not only a way to hype on sanctions and curry favor with investors, the government, and consumers, but it is also a clear signal about potential threats. Direct political opinions in a product’s blog, like “we support X” or “we are against X” Blocking people on social media and in chats/groups Any aggressive behavior of maintainers in public discussions Too persistent requests for donations

Get the Android app

Or read this on Hacker News

Read more on:

Photo of software

software

Photo of security threat

security threat

Photo of politic opinion

politic opinion

Related news:

News photo

Apple finally launches next-gen ‘CarPlay Ultra’ software, starting with Aston Martin

News photo

John Carmack suggests the world could run on older hardware – if we optimized software better

News photo

Microsoft facing multibillion legal claim over how it sells software

« Too Much Go Misdirection
Cocospy stalkerware apps go offline after data breach »