Multiple JetBrains IDE plugins caught stealing AI keys
Posted by sschueller 2 days ago
Comments
Comment by oniony 1 day ago
I've never seen square brackets used like that around a dot in an IPv4. Spent a while reading whether it was even valid to finds out it's not!
Apparently this is added by the writer/editor of the news article so that the malicious IP does not get hyperlinked so that nobody clicks it by accident.
Comment by sifex 1 day ago
Yea, the process overall has a fairly cool name as well “de-fang”. Overall it helps security teams share these indicators safely without having to worry about Slack or any other tool hyperlinking them automatically.
There are tools online to help you do this as well
https://gchq.github.io/CyberChef/#recipe=Defang_URL(true,tru...
Comment by tancop 1 day ago
sounds like the old hola vpn business model where free users served as residential proxy endpoints for paying customers. a couple ended up with criminal investigations after someone used it to download cp through their computer. the details about how it works were buried in a faq, they got sued and switched to working with a company called "bright data" that runs a botnet for web scraping.
Comment by faangguyindia 1 day ago
Wait what? Isn't it backwards?
Hola was basically VPN provider which Luminati networks leveraged to provide residential proxy service to corporates.
Later Luminati rebranded as bright data networks.
Atleast that's how I remember it.
Comment by sieabahlpark 1 day ago
[dead]
Comment by cpburns2009 1 day ago
Not JetBrains plugins now too.
Comment by 1659447091 1 day ago
[dead]