home.social

#backdoored — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #backdoored, aggregated by home.social.

  1. Widely used #DaemonTools disk app #backdoored in month long supply-chain attack

    Daemon Tools, a widely used app for mounting disk images, has been backdoored in a monthlong compromise that has pushed #malicious updates from the servers of its developer, researchers said Tuesday.
    #security #supplychain

    arstechnica.com/security/2026/

  2. Popular #LiteLLM #PyPI package #backdoored to steal #credentials , auth #tokens

    The #TeamPCP #hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI & claiming to have stolen data from hundreds of thousands of devices during the attack.

    LiteLLM is an open-source #Python library that serves as a gateway to multiple large language model ( #LLM ) providers via a single #API.
    #privacy #security #supplychain

    bleepingcomputer.com/news/secu

  3. another interesting detail with this SBT #military #crypto #device #backdoored by the #nsa is that it contains a weird virtual machine, this handles templating of messages and fixed point math, and uses only 2 data "registers" and a pointer register.

  4. some interesting details, the #nsa #backdoored #phillips device runs a 8051 mcu. there's a print subroutine, that pops the return address from the stack, and prints the litteral chars from that address onwards until it finds a byte which has the top bit set. then it returns to the address after this last char. of course this is no calling-convention that any disassembler knows, so it throws them off.

    2/n

  5. The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
    cryptomuseum.com/crypto/philip

    back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:

    rad.ctrlc.hu/nodes/rad.ctrlc.h

    also on the bad site: github.com/stef/UA-8295-NSA

    update: it's a thread: 1/n

  6. The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
    cryptomuseum.com/crypto/philip

    back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:

    rad.ctrlc.hu/nodes/rad.ctrlc.h

    also on the bad site: github.com/stef/UA-8295-NSA

    update: it's a thread: 1/n

  7. The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
    cryptomuseum.com/crypto/philip

    back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:

    rad.ctrlc.hu/nodes/rad.ctrlc.h

    also on the bad site: github.com/stef/UA-8295-NSA

    update: it's a thread: 1/n

  8. The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
    cryptomuseum.com/crypto/philip

    back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:

    rad.ctrlc.hu/nodes/rad.ctrlc.h

    also on the bad site: github.com/stef/UA-8295-NSA

    update: it's a thread: 1/n

  9. The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
    cryptomuseum.com/crypto/philip

    back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:

    rad.ctrlc.hu/nodes/rad.ctrlc.h

    also on the bad site: github.com/stef/UA-8295-NSA

    update: it's a thread: 1/n

  10. #Cocaine in Private Jets and Sex Toys: What the #FBI Found on its Secretly #Backdoored #Chat App

    Private jets loaded with cocaine landing at an airport in #Germany. A #trafficker stuffing a racing sail boat with drugs and entering a tournament to blend in with other racers before speeding off. Vacuum-sealed layers of #methamphetamine inside solar panels. And nearly 60 kilograms of drugs hidden inside a shipment of sex toys.

    404media.co/cocaine-in-private

  11. Sellers of Anom, the FBI's Secret #Backdoored Phone, Plead Guilty

    The court records released as part of the plea deals also provide new insight into how some of the phone sellers discussed drug #trafficking on their #Anom devices as well.
    #privacy #security #backdoor

    404media.co/sellers-of-anom-th

  12. To what extent are fediverse instances openly #neocon, neocon sympathisers, closet neocon with signals of virtue, or neocon #backdoored?

    Part of us thinks the #neoconQuotient is higher than expected, or 70%-80%. We are basing this figure on a range of intuitive assessments.

    And yes this still makes fedi better than the dotcons.

    #askFedi

  13. To what extent are fediverse instances openly #neocon, neocon sympathisers, closet neocon with signals of virtue, or neocon #backdoored?

    Part of us thinks the #neoconQuotient is higher than expected, or 70%-80%. We are basing this figure on a range of intuitive assessments.

    And yes this still makes fedi better than the dotcons.

    #askFedi

  14. Mongolian cert auth (manages trust for encryption) served client installer.

    Never know if you can really trust that certificate authority.

    Use Tor .onion Hidden Service domains wherever possible- avoid .

    zdnet.com/article/website-of-m