programmer humor

[Ivanhoe]

COBOL programmers at work;

[TrustMe]

COBOL was the first programming language I learnt. God I feel old  

[Ivanhoe]

Only humor in the "gallows humor" sense;

https://www.itpro.com/security/cyber-attacks/shai-hulud-malware-is-back-with-a-vengeance-and-hit-more-than-19-000-github-repositories-so-far-heres-what-developers-need-to-know
 

Quote

 

The Shai-Hulud worm is back and once again infecting npm packages – and the scale of the attack is even greater than a September 2025 campaign which affected 180 repositories before containment.

Attackers involved in the campaign have been exploiting compromised package maintainer accounts to publish trojanized versions of legitimate npm packages that appear to originate from the official source.

Once downloaded, the malware scans for credentials and CI/CD secrets, which are then published to the user's own repositories. It also inserts the malicious payload into all of the users’ available npm packages, spreading the infection.

This time round, the malware has affected more than 19,000 GitHub repositories and compromised around 700 npm packages, including core libraries from Zapier and the Ethereum Name Service (ENS) ecosystem, along with PostHog and Postman.

 

 

Quote

According to Wiz Threat Research, the attack is accelerating at around 1,000 new repos every 30 minutes.

If you're not familiar with npm, it is the prevalent package system for JavaScript. So npm repositories being riddled with worms means that a larger percentage of web apps are potentially malware. Which implies the whole digital economy is built on quicksand. AFAICT, we no longer have an industry of web programmers who can actually program.

Scary thought; organizations training LLM-based AI on existing JavaScript code bases are possibly training their AI to produce wormy code. 

Make sure you know how to knapp flints, hunt and fight with stone-tipped spears.

 

 

[Murph]

 

[Ivanhoe]

[Ssnake]

I know at least one guy who might try exactly that if left unsupervised.