Generally there's some mechanism whereby you can "delegate" your tokens to allow someone else to validate, with the expectation that they pay you some of the profit from validating as interest, so it's less about having a lot of money and more about having a lot of trust represented by people choosing to delegate to you.
I don't think it'll particularly stabilize or destabilize the currency much, apart from breaking (thankfully) the connection to "how much power and how many GPUs can you buy with that". That was already not an even exchange, else it wouldn't have made any financial sense to go into mining.
In terms of attacks, you can generally detect whether a validator is misbehaving, and a misbehaving validator gets actively penalized; I don't know whether ethereum is going to use slashing, but it's not uncommon to allow another node to _confiscate_ the deposit a validator made if they can prove misbehavior - for instance, if the validator signed two different versions of the same block, the way they would if attempting to double spend. In general you also need more than one validator to make an attack feasible, so it's not so much "buy a lot", it's "buy more than half of all ethereum in existence", and then you can keep an attack going for a little while, before other nodes on the network confiscate all of that ether and you've lost more money than Jeff Bezos' net worth.