Developer Articles | TechForDev

Latest AI / ML JavaScript Python React Next.js Web Dev DevOps Cloud

Postmortem: Supply Chain Attack via Compromised NPM Package 11 Caused a Production Data Leak

ANKUSH CHOUDHARY JOHALApr 28, 2026 • 14 min read

Postmortem: Supply Chain Attack via Compromised NPM Package 11 Caused a Production Data Leak

On March 14, 2024, a single compromised NPM package – version 11.2.4 of the widely used...

#postmortem#supply#chain#attack

0 0

War Story: How a Prompt Injection Attack on Our GPT-5 Chatbot and Unpatched FastAPI 0.110 Caused a Data Leak

ANKUSH CHOUDHARY JOHALApr 29, 2026 • 14 min read

War Story: How a Prompt Injection Attack on Our GPT-5 Chatbot and Unpatched FastAPI 0.110 Caused a Data Leak

On March 12, 2024, our team discovered a 14-hour data exfiltration window where 12,400 user PII...

#story#prompt#injection#attack

0 0

War Story: How a MetaMask 11.0 Phishing Attack Stole 50 User Wallets

ANKUSH CHOUDHARY JOHAL6d ago • 3 min read

War Story: How a MetaMask 11.0 Phishing Attack Stole 50 User Wallets

War Story: How a MetaMask 11.0 Phishing Attack Stole 50 User Wallets In Q3 2024, a...

#story#metamask#phishing#attack

0 0

War Story: We Had an XSS Attack Because of a React 19 Unsafe InnerHTML Usage

ANKUSH CHOUDHARY JOHALMay 1, 2026 • 3 min read

War Story: We Had an XSS Attack Because of a React 19 Unsafe InnerHTML Usage

War Story: We Had an XSS Attack Because of a React 19 Unsafe InnerHTML Usage It started as...

#story#attack#because#react

0 0

War Story: How We Survived a Ransomware Attack on Our Jenkins 2.440 Instance – Fixed with GitHub Actions 2.0 and Vault 1.15

ANKUSH CHOUDHARY JOHALMay 2, 2026 • 15 min read

War Story: How We Survived a Ransomware Attack on Our Jenkins 2.440 Instance – Fixed with GitHub Actions 2.0 and Vault 1.15

At 03:17 UTC on October 14, 2024, our Jenkins 2.440.3 instance started encrypting 14TB of build...

#story#survived#ransomware#attack

0 0

Postmortem: A Ransomware Attack on Our On-Prem Data Center Taught Us to Migrate to AWS

ANKUSH CHOUDHARY JOHALApr 30, 2026 • 2 min read

Postmortem: A Ransomware Attack on Our On-Prem Data Center Taught Us to Migrate to AWS

\n At 03:14 UTC on October 17, 2023, our on-prem data center’s SIEM triggered a critical alert: 94%...

#postmortem#ransomware#attack#onprem

0 0

Postmortem: Cryptojacking Attack on Kubernetes 1.34 Nodes: How We Added gVisor 1.0 and Falco 0.38

ANKUSH CHOUDHARY JOHALApr 28, 2026 • 13 min read

Postmortem: Cryptojacking Attack on Kubernetes 1.34 Nodes: How We Added gVisor 1.0 and Falco 0.38

At 03:14 UTC on October 17, 2024, our on-call pager woke the entire platform team: 94% of our...

#postmortem#cryptojacking#attack#kubernetes

0 0

ANKUSH CHOUDHARY JOHALApr 30, 2026 • 17 min read

Postmortem: A Ransomware Attack on Our On-Prem Data Center Taught Us to Migrate to AWS

At 03:17 UTC on March 14, 2023, our on-prem data center’s intrusion detection system triggered a...

#postmortem#ransomware#attack#onprem

0 0

Tech Articles

Postmortem: Supply Chain Attack via Compromised NPM Package 11 Caused a Production Data Leak

War Story: How a Prompt Injection Attack on Our GPT-5 Chatbot and Unpatched FastAPI 0.110 Caused a Data Leak

War Story: How a MetaMask 11.0 Phishing Attack Stole 50 User Wallets

War Story: We Had an XSS Attack Because of a React 19 Unsafe InnerHTML Usage

War Story: How We Survived a Ransomware Attack on Our Jenkins 2.440 Instance – Fixed with GitHub Actions 2.0 and Vault 1.15

Postmortem: A Ransomware Attack on Our On-Prem Data Center Taught Us to Migrate to AWS

Postmortem: Cryptojacking Attack on Kubernetes 1.34 Nodes: How We Added gVisor 1.0 and Falco 0.38

Postmortem: A Ransomware Attack on Our On-Prem Data Center Taught Us to Migrate to AWS