CRYSTALRAY: threat actors exploiting OSS tools