Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...
GIGAZINE

It turns out that 'example.com' was automatically configured to point to Sumitomo Electric Industries' server domain in Japan using Microsoft's autodiscovery service.

It has been discovered that the domain 'example.com,' used for testing and explanation purposes, is treated as a real mail server in Microsoft Outlook's auto-configuration feature, resulting in users' ...