Thanks for sharing your story Kenneth. Unfortunately it will be a common one... Maintainers of open source projects will be increasingly target by sophisticated hacking teams, sometimes government funded. They will often win but the best thing you can do for yourself and your users is to practice good security hygiene and this story is a perfect example why. Strong random passwords everywhere (no repeated passwords) and 2-factor auth should be the minimum. Thankfully there are plenty of free apps out there that help you manage this process. Nobody can have perfect security but you can easily raise the bar high enough to force an attacker to move elsewhere. Also the Op's password was most likely taken from the recently leaked LinkedIn breach (educated guess).
JASK is an Artificial Intelligence + Cyber Security startup located in Downtown San Francisco.
We are hiring big data and ML engineers! If you love spinning up massive hadoop clusters in AWS and developing streaming complex machine learning algorithms with the goal of protecting the world from cyber criminals and espionage? Well you came to the right place... Amazing team and culture. Top quality benefits. JASK jobs@jask.op
JASK - http://www.jask.com, San Francisco (Mid-Market) is hiring On-site Data Engineers, AI/Machine Learning and Data Visualization Engineers. JASK is the leader in innovation for Cyber Security defense using Artificial Intelligence. Backed by Battery Ventures. contact https://www.jask.io/careers
The cool thing is you can pair this with Ansible and get 1,000's of honeypots deployed at once. In a proof of concept we deployed nearly dozens using digital ocean API and got blocked by their API creation limits.
If you use more interesting honeypot software like Conpot you can monitor which countries are attacking SCADA systems, etc.
that being said, it is trivial for a nation state to do automatic JS injection to the DOM using carrier grade MITM packet manipulation on any user-agent or cookies with en_us locale strings leaving a particular telecom provider. We now know this is standard practice even by western countries to foreigners.
Standard level of paranoia should apply if your concerned about privacy regardless if your in Sochi or Starbucks cafe in Cleveland.
Very Senior Frontend and Full Stack developers - Javascript, Python, REST, Bonus: D3.js, Django. Experience in a developing a production SaaS product.
We are a revolutionary enterprise cyber security company with series A funding and an awesome culture of hacking, collaboration, being goof balls and making changes in a very challenging industry.
If this sounds like something you would be interested in, please give us a shout, we would love to meet you.
Funded startup in US Cyber Security transforming the landscape of cyber warfare. Are you an unbelievable python developer who can rapid prototype great products over night or enjoy refactoring code to high performance asynchronous design? Want to develop the weapons and defenses of the future all in code?
* Must be based in the US and able to quickly relocate without VISA requirement to Washington DC, Austin TX, NYC or San Francisco (preferred)
* Able to work 30+ hours per week - if you need to start out at 15-20 and ramp up to full time, that is fine
* Detail oriented. Together we will plan a project and create a road map and you should then follow the plan completely and precisely.
* Able to provide valuable feedback to the team about architecture decisions.
* Work fast and efficiently
* Keen eye for design and usability
* Want to defend your nation from evil hackers and nation states
The skills you will need are:
* Django / Python
* Javascript / jQuery
* HTML and CSS (design is not needed)
* A little bit of Java and/or C/Objective C
* Database
* Testing (Unit tests or similar)
* Basic Linux (esp Ubuntu Server)
* Git
* RESTful APIs
These are nice bonuses:
* Backbone.js (or similar client side mvc)
* Mobile or responsive dev
* Tasty-Pie
* D3.js / visualization / charting skills
* UI/UX design
Skills Required
django python javascript jquery html css design linux ubuntu git mvc mobile
