Solders, on the other hand, has been found to incorporate a post-install script in its package.json, causing the malicious code to be automatically executed as soon as the package is installed.
"At first glance, it's hard to believe that this is actually valid JavaScript," the Veracode Threat Research team said. "It looks like a seemingly random collection of Japanese symbols. It turns out that this particular obfuscation scheme uses the Unicode characters as variable names and a sophisticated chain of dynamic code generation to work."
Decoding the script reveals an extra layer of obfuscation, unpacking which reveals its main function: Check if the compromised machine is Windows, and if so, run a PowerShell command to retrieve a next-stage payload from a remote server ("firewall[.]tel").
This second-stage PowerShell script, also obscured, is designed to fetch a Windows batch script from another domain ("cdn.audiowave[.]org") and configures a Windows Defender Antivirus exclusion list to avoid detection. The batch script then paves the way for the execution of a .NET DLL that reaches out to a PNG image hosted on ImgBB ("i.ibb[.]co").
"[The DLL] is grabbing the last two pixels from this image and then looping through some data contained elsewhere in it," Veracode said. "It ultimately builds up in memory YET ANOTHER .NET DLL."
Furthermore, the DLL is equipped to create task scheduler entries and features the ability to bypass user account control (UAC) using a combination of FodHelper.exe and programmatic identifiers (ProgIDs) to evade defenses and avoid triggering any security alerts to the user.
The newly-downloaded DLL is Pulsar RAT, a "free, open-source Remote Administration Tool for Windows" and a variant of the Quasar RAT malware.
Honestly, at this point the hacker deserves to empty my bank account.
Oh god.. You'll have to learn IIS. Internet Inf🤮rmation Services.
In all seriousness Windows Server is much more enjoyable than Home/Pro/Enterprise or whatever the desktop versions are called. You have more control over the system and they don't hinder you from configuring stuff unlike on the desktop version.
Someone already suggested to get a VPS and just get to know the system. A tip though if you have to spin up a windows server on Azure vs somewhere else: search for info with the keyword "azure". Microsoft stuff seems to work worse on their own cloud than anywhere else. MS SQL Server and Azure's version of MS SQL Server differs and lacks features.
Been a long time since I had to use any of the above so things might have changed.
Views that seriously harm or endanger other people are dangerous.
If the founder would have opposing views in e.g. should we narrow down the car roads in cities and widen the pedestrian walks - ok. I think there's a lot to this question, I think pedestrian walks should be wider, cars are dangerous, etc. But this is not as dangerous as:
"Do you deny scientific evidence that COVID is real and a real danger to a lot of humans"
SimpleX Chat – Many suggested this and I will explicitly recommend against it due to the founder's positions on various topics. This includes being anti-vaxx, believing COVID-19 was a hoax, trans- and homophobia, climate denial; In the SimpleX Groupchat he's also been seen basically bootlicking trump a couple times, but I've lost receipts to that.
I did not know this. I've seen people recommend SimpleX on lemmy too, but probably they didn't know.
I did the same two years ago. All content still deleted.
Wanted to make sure my deletions are not caught by some automated system so deleted posts and comments manually over the span of two weeks whenever I was waiting for something / had time.
I love it when you got mastodon, lemmy, and friendica users in the same thread all just having a discussion. Really feels like an open network and what internet should be.
Fair, but is your current phone truly made in your home country?
Fairphone is arguably doing a lot of good for the consumers and (even if its not perfect) for the environment compared to other phone manufacturers. And most people in my country need a (smart)phone.
I highly recommend the book "The Book of Hope" from Jane Goodall to truly understand "Don't let perfect be the enemy of good" when it comes to climate action.
I recently had this problem while dualbooting mint and windows: windows was shutting down the LAN hardware somehow.
Had to disable fast startup (in windows, but I recall some Motherboards have also "fast boot" in BIOS as well?) and also in windows' LAN adapter settings a power saving option.
What the hell
Honestly, at this point the hacker deserves to empty my bank account.