logoalt Hacker News

teerayyesterday at 6:03 PM2 repliesview on HN

We’re not talking about security researchers here:

> there is lots to gain from being the first to write about the new malware on some registry, so *companies* are actively downloading and inspecting literally every package.

(Emphasis mine)

Replies

weaksauceyesterday at 7:33 PM

yeah security researchers at security companies are the ones we are talking about.

john_strinlaiyesterday at 6:32 PM

>We’re not talking about security researchers here:

we are.

"companies" in this context is "security companies" (hence why they are "downloading and inspecting every package", which would not make sense if referring to the people authoring and shipping a single package)