"The project's maintainer suggests that the decision to pull out of the npm registry is based on the newly introduced two-factor requirements for top projects, GitHub's abrupt decision-making, and ongoing 'legal matters' between SheetJS and npm."

pretty shady character:

"Indeed, Korkorich has experience in space startups, and his resume in the same blog post will have you believe that he’s been haunted all his life by this dream of making sustainable hypersonic and space aircraft. He’s also been haunted by bad luck, first with Russia forcing him out of his first space company, Dauria Aerospace, and then with U.S. officials forcing him out of his second, Momentus Space. Depending on how you look at it, he’s a Russian expat with ties with the Russian government, who tried to move to the U.S. to infiltrate the space industry, which ultimately led to a failed SPAC merger, an SEC investigation and accusations of fraud, before being ousted from his own company."

+10

Funnier is how one article has the hackers' chat logs with the names of the victim antivirus companies and the other doesn't.

Gizmodo [US] also gave the names of the victims: https://gizmodo.com/antivirus-makers-confirm-and-deny-gettin...

For a broader picture: 1. https://www.bleepingcomputer.com/news/security/hackers-selli... 2. https://www.bleepingcomputer.com/news/security/new-details-e...

The interesting question is...How did they know which buttons to push (KWS) in order to make him like the browser?