Malicious URLs on Wiki
ayancey opened this issue · 5 comments
Hey,
It looks like multiple people are persistently changing the URL on the wiki page for Windows installation from ProxSpace to a malicious remote access trojan.
https://github.com/Proxmark/proxmark3/wiki/Windows
Someone changed the URL from https://github.com/Gator96100/ProxSpace/archive/master.zip to https://github.com/lampii/VideoCaptureUtility/releases/download/42/master.zip
The user keeps changing their name to cover up their tracks.
@0xFFFF (owner of this repository): Would it make sense to allow Wiki changes to contributors only?
FYI, this continues to be an issue. The attacker has gone and tried to revert the change I made, re-enabling the malicious link. https://github.com/Proxmark/proxmark3/wiki/Windows/_history
Some maintainers of Proxmark3 need to step in ASAP, this is a joke that someone is toying with a security researcher project like this
In response to this particular issue I have enabled:
General
/Require contributors to sign off on web-based commits
General
/Features
/Wikis
/Restrict editing to users in teams with push access only
Please inform me (just as @pwpiwi has done) if additional changes are required.