Share this page!

Ax Sharma Profile picture
Twitter logo
Apr 11 5 tweets 2 min read
Russia-based dev Yaffle altered 'event-source-polyfill' #npm package in March to show anti-war messages to Russians, as a a peaceful protest.

This marks the THIRD major #opensource self-sabotage of 2022: npm package is downloaded 600K weekly and used by 135,000+ GitHub repos.
After printing the Russian language, the package opens up the user's web browser and directs them to a Change[.]org petition, 'NetVoyne' — signed by over 1.2 million people already.
'event-source-polyfill' further advises Russian civilians to be wary of "one-sided" news channels controlled by the Russian government and to seek reliable news sources such as BBC's Tor website:
"While current protestware may be centered around the war, that doesn't mean it will always be limited to select trending issues.

Developers have discovered an avenue of creative self-expression that no longer restricts them to just delivering expected functionality...
—a developer can, on a whim, decide to change their mind and their code as they please. A neglected premise of open source is that they always could."
bleepingcomputer.com/news/security/…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Ax Sharma

Ax Sharma Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @Ax_Sharma

Ax Sharma Profile picture
Apr 12
In 🆕 BBC documentary, Victims of Ukraine War Scammers, @hannah_gelbart and I investigate FAKE crypto donation scams capitalizing on the ongoing war to snatch funds away from charities and into their pockets. 💰

Props to @SoyaInk & BBC crew for a brilliant production! ImageImageImageImage
And it doesn't stop at just threat actors stealing thousands of dollars in donations from unsuspecting donors.
We come across real people's identities being stolen.
Dr. @MiguelHibert's identity and pics being abused by an 'Aronov Maxim'—but reverse image search reveals the truth. Image
Proofpoint's @sherrod_im warns of over 2.8 million instances of scammers soliciting donations via fraudulent crypto wallet addresses. Image
Read 7 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(