In other words, no single address, IP, or server can be blocked. That said, there are downsides to the process not mentioned by Checkmarx, including the fact that blockchain communication is slow, and public. Blockchains cannot be programmed, or blocked easily, but they can be traced if their use as part of the C2 malware is discovered.
Despite previous predictions that this process will take off, this may be why using C2 blockchains is still a test for malware.
Package confusion
Perhaps the most important part of the story is that the method is used to identify testing tools distributed through NPM, the largest open source JavaScript registry. Direct testing tools are another way to get inside the test environments of developers, and any deeper access to the CI/CD pipelines they expose.
Source link