Protestware
Protestware is the use of malware for a social cause or protest. The term was popularized during the Russo-Ukrainian War, specifically after the peacenotwar and node-ipc
supply chain attacks on the npm ecosystem.[1][2]
History[edit]
Protestware was first used to describe peacenotwar, which is a piece of malware made by Brandon Miller targeting Russian and Belarus citizens who depend on software that uses peacenotwar
as a dependency (as of March 19, 2022, only node-ipc
).[3] During the initial reaction of the malware's release, users on the GitHub repository of node-ipc
and peacenotwar
began using the term "protestware" to describe the malware in GitHub issues and comments, security researchers and news networks followed.[4][5] Although the term was actively being used to describe other incidents some time before peacenotwar, it most notably appeared in response to peacenotwar.[5]
References[edit]
- ↑ "Open source dev attacked for spreading data-wiping 'protestware'". TheCyberSecurity.news. Retrieved 2022-03-19.
- ↑ "Open-source developer adds pro-Ukraine 'protestware' to JavaScript tool". SiliconANGLE. 2022-03-18. Retrieved 2022-03-19.
- ↑ "Alert: peacenotwar module sabotages npm developers in the node-ipc package to protest the invasion of Ukraine | Snyk". snyk.io. 2022-03-16. Retrieved 2022-03-19.
- ↑ "Issues · RIAEvangelist/node-ipc". GitHub. Retrieved 2022-03-19.
- ↑ 5.0 5.1 By (2022-01-14). "This Week In Security: NPM Vandalism, Simulating Reboots, And More". Hackaday. Retrieved 2022-03-19.
![]() | This malware-related article is a stub. You can help EverybodyWiki by expanding it. |
This article "Protestware" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:Protestware. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.