Test
Researchers at Reversing Labs identified two malicious packages on npm targeting the ‘ethers' package: ‘ethers-provider2' and ‘ethers-providerz.' These packages stand out because they download a secondary malware stage that monitors the legitimate ‘ethers' package, then swaps its ‘provider-jsonrpc.js' with a trojanized version. This trojanized file downloads a third-stage malware that creates a reverse shell to a malicious IP address. Reversing Labs emphasizes the severity of this issue, as removing the malicious package does not eliminate the risk since the trojanized legitimate package can still harbor the malware.
Researchers from Abnormal Security have discovered a new Credential Stuffing as a Service (CSaaS) called Atlantis AIO. Atlantis AIO can automate the process of account takeovers via brute forcing, credential stuffing, or abusing account recovery with pre-built integrations for 140 services.
Did the test go as planned?
I was having problems writing long threads because it looks like my premium membership was not being considered, even though it's active. But it looks like that was fixed
Yeah, sometimes it mess up. I heard that it's because of the steps taken to minimise the ddos attacks or otherwise improve security.
Sometimes a simple reload does the trick😅
!BBH
Apparently it did!