Update on jQuery.com Compromises

Posted on by

Today at 11:15AM EDT, the jQuery Infrastructure team received widespread reports and confirmed a compromise of jquery.com. This attack was aimed at defacing our sites, and did not inject malware like the attack that was reported on September 18th by RiskIQ. We believe that these are separate incidents that may have used the same attack vector.

We took the site down as soon as we realized there was a compromise and cleaned the infected files. We are taking steps to re-secure our servers, upgrade dependencies, and address vulnerabilities.

At no point today have there been reports of malware being distributed from any of our sites, nor has the code of any jQuery libraries on our website or CDN been affected or modified today or during last week’s reported attack. Some of this confusion stems from last week’s attackers having set up a domain name intended to dupe users into thinking it was the official jQuery CDN. Please note that the official domain for jQuery files hosted from our official CDN is code.jquery.com.

There has also been concern that the user accounts of developers and administrators who use jquery.com and the rest of our WordPress sites have somehow been compromised by this attack. However, the only people who have a user account for the WordPress sites affected by these attacks are members of the jQuery team; we do not have any public user registration for any sort of account on any of the affected sites.

We are continuing to actively work on and monitor this situation and will update you as we learn more.

Updates

We have moved http://jquery.com to a new server only running code we trust and are continuing to monitor the situation closely. – September 24, 2014 at 5:07 PM EDT via Twitter

Was jquery.com Compromised?

Posted on by

Lastest update on the compromise: Update on jQuery.com Compromises

Earlier today, RiskIQ published a blog post stating that the jQuery.com web servers were compromised and serving the RIG exploit kit for a short period of time on the afternoon of September 18th. Our internal investigation into our servers and logs have not yet found the RIG exploit kit or evidence that there was in fact a compromise.

RiskIQ was able to make contact with the jQuery Infrastructure team on September 18th, at which point with members of the RiskIQ team tried to find evidence of compromise. So far the investigation has been unable to reproduce or confirm that our servers were compromised. We have not been notified by any other security firm or users of jquery.com confirming a compromise. Normally, when we have issues with jQuery infrastructure, we hear reports within minutes on Twitter, via IRC, etc.

At no time have the hosted jQuery libraries been compromised.

Currently the only potential system compromised is the web software or server that runs jquery.com. We have asked RiskIQ to help us look through our server logs and systems to help identify when and how a compromise happened. Please check this blog post for updates on the situation.

Even though we don’t have immediate evidence of compromise, we have taken the proper precautions to ensure our servers are secure and clean. If you happened to visit any of the our sites on September 18th and are afraid of your system being compromised you can follow the advice RiskIQ recommends:

  • Immediately re-image system
  • Reset passwords for user accounts that have been used on the system
  • See if any suspicious activity has originated from the offending system

jQuery Conference 2012: UK – Training Workshops Announced

Posted on by

We are very happy to announce two training workshops for this years United Kingdom conference. The trainings will be given by Doug Neiner, Ralph Whitbeck and Mike Hostetler of appendTo. The general admission tickets for the conference are now sold out but you can buy conference/training bundles and still attend the conference.

appendTo

appendTo will be giving Introduction to jQuery and jQuery Mobile workshops. The workshops will be held on Thursday, 9 February, 2012 at the Lady Margaret Hall in Oxford, UK.

Introduction to jQuery

jQuery has become the most popular JavaScript library for developers because of it’s easy to learn and write. This course takes students through the basics of jQuery focused front-end development. This material is meant to establish a core foundation for developers. With a solid basis of jQuery and JavaScript understanding a developer will feel confident that they can add richness to their web applications.

jQuery Topics Covered*

  • Introduction
  • Find Something, Do Something
  • The jQuery Function
  • The jQuery Object
  • Events/Ajax/more…

* Topics subject to change

Price for the Introduction to jQuery workshop is £320 + VAT which includes a conference pass, £160 + VAT for just the training.

jQuery Mobile

jQuery mobile has gained undeniable press as a possible great solution to mobile web development. With a progressive enhancement approach jQuery mobile aims to allow a mobile web experience for all, while rewarding those with mobile devices capable of a rich experience.

This training will cover a comprehensive review of the jQuery Mobile Framework, walking through all of its new features and functionalities available to build robust and cross-platform mobile sites. The entire API will covered along with examples of how to use each component to its fullest potential.

The training concludes with a walk through of the construction of a jQuery Mobile application from scratch, all the way through to compiling a native version of the application with PhoneGap.

Topics Covered*

  • The state of the mobile web
  • jQuery Mobile Feature Overview
  • Building a jQuery Mobile application from scratch
  • Go native with jQuery Mobile + PhoneGap

* Topics subject to change

Price for the jQuery Mobile workshop is £420 + VAT which includes a conference pass, £270 + VAT for just the training.

The training workshops will be held on 9 February, 2012 at the Lady Margaret Hall and not at the Saïd Business School where the conference will be held.

jQuery Conference 2012: United Kingdom Announced

Posted on by

jQuery Conference 2012: UK

We are very happy to announce jQuery Conference 2012: UK, the first jQuery conference in the UK, on 10th February 2012. The conference will be held at the Saïd Business School in Oxford with a line-up including six jQuery team members and four industry experts:

jQuery Conference 2012: UK Speakers

Tickets

You can read more about the line-up, talks and location on the event site and tickets are on sale now at EventBrite.

Organizers

The event is being organized by Oxford based digital agency White October with the permission of the jQuery project and with the help and support from jQuery team members. Last year, the jQuery events team tried to put together an event outside the USA and we found how very hard it was to secure a venue from so far away. The jQuery Team is very happy to be working with White October in putting the conference together, and we hope to have you join as we make our European debut!

Sponsorship

If your company is interested in sponsoring the event please take a look at the sponsor pack, please feel free to email or phone (+44(0)207 976 4894) John at White October to discuss the different options.

jQuery Conference 2011: Boston Conference Dates

Posted on by

We are very happy to announce the dates and venue for the 2011 Boston jQuery Conference. We will hold our annual Boston Conference on October 1—2, 2011, at the Royal Sonesta Hotel in Cambridge, MA.

Call for Speakers

We are officially opening a call for speakers. If you would like to speak at the conference on topics such as jQuery, JavaScript, HTML5, CSS3, or general front-end development, please submit your talk proposal to us by July 15th. Speakers will be notified, confirmed, and announced within a week after the deadline.

Registration

We will be opening registration soon. You can fill out the form on the events home page and be notified the instant tickets are available.

Hotel

We have worked with the Royal Sonesta Hotel and have a huge block of rooms reserved for the conference. The Royal Sonesta is providing a discounted room rate of $273.53/night (includes tax). If you make your reservation over the phone, please let them know that you are staying for the jQuery Conference to get the discount. You can also reserve your room online. Please use the coded website link on the hotel page of the event site to ensure you get the discounted rate.

More information

If you or your company are interested in sponsoring this event, please contact us to find out more information.

We’re aware that, unfortunately, this year’s Boston conference overlaps JSConf.eu. We considered a number of dates, but had to settle on the 1st and 2nd. We are truly sorry if this presents a conflict for you and hope you can enjoy a weekend of JavaScript on either side of the Atlantic.

jQuery Conference 2011: SF Bay Area – Speakers and Talks

Posted on by

Speakers

We currently have 28 speakers and trainers listed on the speakers page of the events site for the San Francisco Bay Area Conference on April 16-17, 2011. Featuring speakers like John Resig, Richard D. Worth, Todd Parker, Steve Souders, Nicholas Zakas, Garann Means, Darcy Clarke, Estelle Weyl, Matt Kelly and many more.

Make sure you head over to the events site to learn all about our speakers.

Talks

We also have the schedule posted with 25 out of the 28 talks filled. We’ll be filling those remaining slots in the upcoming week (check our twitter account for the latest).

Here are a few of the talks you’ll find this year:

  • jQuery Keynote
  • jQuery UI Keynote
  • jQuery Mobile
  • Deferreds – Putting Laziness to Work
  • Integrating Code Quality tools into your jQuery Development Workflow
  • Filling the HTML5 & CSS3 Gaps with Polyfills and Shims
  • Harnessing jQuery Templates and jQuery Data Link, to build dynamic data-driven browser apps
  • Presentational jQuery
  • The jQuery UI Widget Factory: WAT?
  • Mobile Performance
  • Plus many more

Make sure to click on the talk titles and speakers names to read the associated abstracts and bios.

Pre-conference Training

Don’t forget about our training classes we are offering on April 15th. Find out more information.

Registration

Tickets are selling fast so make sure you get your ticket today. Head over to our Register page to find out how you can be a part of the next jQuery Conference.

jQuery Conference 2011 – Preconference Training

Posted on by

What started, with great demand, at the San Francisco Bay Area conference last year and has continued on for the conferences thereafter is our preconference training.  We are once again offering preconference training on April 15th for the jQuery Conference 2011: San Francisco Bay Area but for the first time offering two separate classes, beginner and advanced.

Introduction to jQuery given by Bocoup

BocoupBocoup gave a bunch of advanced and hack day training classes in Boston last year in addition to the preconference Introduction to jQuery class, which also was greatly attended.  We are very happy to announce that Bocoup will once again be giving the Introduction to jQuery class.

From Bocoup.com:

The training will be given by Ben Alman (the jQuery plugin guy) and Adam Sontag (the yayQuery guy), and has been designed to give attendees a basic understanding of the jQuery API, development techniques, and best practices. In addition, attendees will learn about both jQuery UI and jQuery Mobile, and will be given an introduction to extending jQuery with custom plugins.

As usual there is a limited number of tickets for this training class and they are selling fast.  You’ll need to hurry if you want a seat for this class.

Tickets for Beginner training are $299 (plus Eventbright fees) and all proceeds go directly to the jQuery Project.

Please make sure to thank Bocoup for their support.

Advanced jQuery given by Jupiter JavaScript Consulting

BocoupNew this year is an additional track for Advanced jQuery and we are happy to have Jupiter JavaScript Consulting give this class. JuptierJS builds and maintains JavaScriptMVC and has plenty of experience building complex jQuery apps.

From jupiterjs.com:

The following is a rough list of topics we’d like to cover.  I list them here quasi hierarchically.  But in reality, we’ll cover most of these topics throughout the day.

  • Application Design
  • Thin Server Architecture
  • State Management
  • History Enabled Websites
  • Widget Design
  • Event Oriented Architecture
  • Custom Events
  • Pub-Sub
  • Event Delegation
  • 1-2-3 Layers / Separation of Concerns
  • Organizing Ajax and the Domain Model
  • Deffereds
  • Ajax Fixtures
  • Client Side Templates
  • The Perfect jQuery Plugin
  • Prototypal Inheritance
  • File/Folder Organization
  • Dependency Management
  • Production Builds
  • Testing
  • QUnit, Jasmine, Selenium, FuncUnit, Waitr, etc
  • High Performance jQuery
  • Even More Design Reviews

Yes, that’s a whole lot to cover! So come and be prepared to have your mind blown (and let me know if there’s something else you’d like to learn).

As usual there is a limited number of tickets for this training class and they are selling fast.  You’ll need to hurry if you want a seat for this class.

Tickets for Advanced training are $399 (plus Eventbright fees) and all proceeds go directly to the jQuery Project.

Please make sure to thank Jupiter JavaScript Consulting for their support.

jQuery Conference 2011: San Francisco Bay Area Conference Announced

Posted on by

The jQuery Project is very excited to announce the dates for our next San Francisco Bay Area conference; after a fantastic event in 2010, we’ll be returning to the Microsoft Silicon Valley Research Center in Mountain View, California on April 16th and 17th, 2011.

The San Francisco Bay Area conference is the first of two events planned by the jQuery Project in 2011. We’re also in the early stages of planning an event for the East Coast for later this year (we’ll post details as they become available).

Registration is now open! Regularly priced tickets are $299, and for a limited time, there are early-bird tickets available at a $50 discount (early-bird tickets available until March 2nd, or while supplies last).

For more details on the what, when and who, head over to the events site.

In addition to two days of jQuery sessions, we’ll once again be offering a day of jQuery training, on the Friday before the conference. In response to popular demand last year, we’ll be offering two training tracks — Beginner jQuery and Advanced. The training is generoursly offered by our friends at JupiterIT and Bocoup, and all proceeds go directly to funding the future growth of the jQuery project. Keep an eye on this blog and the events site for specific training agendas, coming soon.

Want to contribute?

Interested in speaking? We’re still filling out the roster, and we’d love to have you! Our Call for Papers is live here, and submissions are already starting to roll in. Keep an eye on the jQuery Blog for agenda updates as we fill the slots.

Lastly, if you or your company would like to help out by sponsoring the event, send an email to sponsorship@jquery.com. Every little bit helps, and we’d love to work with you and your team!

That’s it for now folks — looking forward to seeing you all in sunny California!

jQuery Conference 2010: Boston – Update

Posted on by

The jQuery Conference in Boston is fast approaching and we are officially sold out.  Thank you so much for your support it’s going to be a great event.  For those that are coming there is some venue information on the Events home page if you are still looking for a cheaper hotel or if your driving to the venue, there is some parking information you’ll need to be aware of.

Sponsors
We are still looking for last minute sponsors.  Last minute sponsors are our favorite sponsors!

Why sponsor?  The jQuery Conference is supported by our generous Sponsors and Donors, without whom things would be very different. The jQuery Conference is a great way to get your message out to 500+ highly qualified influential technology decision makers; if you or your company are interested, download our prospectus for more information. We are willing to talk with you about a package that would work for you.  Contact information can be found on the prospectus.

Training Class Seats Still Available
I did want to remind everyone about our training class we are holding before the conference. We still have openings for the training class and it is separate from the conference.

In San Francisco, the training class was ran by appendTo and it was a great success.  In Boston, the class will be run by Bocoup, a Boston JavaScript Company.  Here are some of the details about the class.

About the class
Over the course of this one day class the group will build an exciting web application using jQuery. This class will teach you what jQuery does and how to use it responsibly in your websites. Intended for web development beginners.

Trainers
Let me introduce you to the trainers.

From left to right: Boaz Sender, Pete Karl, Rick Waldron and Ben Alman

Agenda

  • What is jQuery?
  • What is the DOM?
  • jQuery and Selectors
  • jQuery and Methods
  • Get stuff do something: DOM traversal and manipulation
  • jQuery and Events
  • jQuery and AJAX
  • jQuery and Effects
  • Using plugins
  • jQuery UI and the widget factory
  • Debugging techniques with jQuery

Advanced classes
Bocoup does offer more advance classes around the same time as the conference.  Check out their site for more details. (18% of the proceeds go directly to the jQuery Foundation)

The jQuery Team would like to thank Bocoup for their donation of the one day training class and the proceeds for the other classes.

jQuery Conference 2010: Boston – Confirmed Speakers

Posted on by

I’d like to announce the confirmed speakers for the jQuery Conference 2010: Boston.

Speaker name and their accepted talk title:

  • Chad Pytel –  Mobile Web Applications with jQuery
  • Mike Taylor –  Is these a bug?, or how to contribute to the jQuery project through  better bug reporting.
  • Garann Means –  Using templates to achieve awesomer architecture
  • Chris Bannon – Theming jQuery UI like an Aristocrat
  • Alex Sexton –  jQuery’s Best Friends
  • Dave Artz –  jQuery in the [AOL] Enterprise
  • Yehuda Katz – Moving to jQuery
  • Doug Neiner –  Contextual jQuery
  • Scott González – Building Extensible Widgets
  • Mike Hostetler – jQuery(‘#knowledge’).appendTo(‘#you’); [Introduction to jQuery]
  • Karl Swedberg – jQuery Effects: Beyond the Basics
  • Jonathan Sharp –  App in a Browser
  • Rey Bango & Ralph Whitbeck – Getting involved!
  • Paul Irish – Inaugural State of HTML5
  • John “unscriptable”  Hann & Brian Cavalier – OOCSS for JavaScript Pirates
  • Brian Moschel – A Crash Course in JavaScript Application  Testing with FuncUnit
  • Rebecca Murphey –  Beyond the DOM: Functionality-Focused Code Organization
  • Thomas Reynolds –  Organizing Code with JavascriptMVC 3
  • Boaz Sender –  Exploding the internet with jQuery and CouchDB
  • Ben Vinegar –  Building Distributed JavaScript Widgets with jQuery
  • Menno van Slooten – Rapid testing, rapid development –  Increase your development speed by reducing your feedback loops
  • Brian Crescimanno – jQueryUI and HTML5 Video Play Nice
  • Paul Elliott –  TDD Your jQuery Plugin
  • Elijah Manor – Introduction to jQuery UI

Update Just confirmed:

  • Matt Kelly – Super Awesome Interactions with jQuery

As always the keynotes for the conference will be given by:

  • Richard D. Worth – jQuery UI
  • John Resig – jQuery Core & jQuery Mobile

We’ll be updating the events site soon with speaker bios, talk abstracts and the schedule for Saturday, October 16th and Sunday, October 17th.  So look for that soon.

Again, you can register for the conference at http://events.jquery.org/2010/boston/register/

Don’t forget that we are also again offering a full day of training to jump start your jQuery skills at the Bocoup Loft.  You can register for the training class on the same page as the conference registration (just scroll down).

Hope to see you there!