Half a second is enough for hackers to compromise the security of users around the world
Security researchers have discovered a timing attack using NPM packages that allows attackers to publish malicious clones of private packages to force developers to use them.According to the Aqua Security report, the attack is based on a small difference in the return time of a "404 Not Found" error...