Threat actors have been observed serving malicious code by utilizing Binance’s Smart Chain (BSC) contracts in what has been described as the “next level of bulletproof hosting.” The campaign, detected two months ago, has been codenamedEtherHidingby Guardio Labs. The novel twist marks the latest iteration in anongoing campaignthat leverages compromised WordPress sites to serve unsuspecting