expertmadmanSophisticated, Highly-Targeted Attacks Continue to Plague npm
mo_ztt ✅Article? It’s just the image
I screwed up submission
Sophisticated, Highly-Targeted Attacks Continue to Plague npm
⚠️Update Aug 16, 2023: This appears to be an ongoing campaign. The actor recently published another package hreport-preview with slight modifications. Namely pulling reverse shells from https://img.murphysec-nb[.]love ⚠️Update Aug 17-19, 2023: This actor continues to publish packages, most recently crcloud-layout, urs-remote, essc-crypto, mh-web-hardware, and mall-front-babel-directive. The IOCs
All good, you can still go back and edit it to fix it.
Yup, this isn’t Reddit.
Yeah sure, you can edit post titles, but you have to remember that we don’t yet have an unusable chat or a very limited selection of mascot-themed avatars. CHRIST WHAT WERE WE THINKING
Also, why hasn’t he updated the story yet, and why are people upvoting the nonexistent story… I am being 100% sincere when I say that seeing a community of people upvote a story, when the actual link to the story is broken so you can’t read it, makes me rethink what type of people make up that community and whether I want to be a part of it.
IDK, maybe it’s some federation thing where he updated the story a while ago and the change just doesn’t propagate properly or quickly or something.