#backdoored — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #backdoored, aggregated by home.social.
-
Widely used #DaemonTools disk app #backdoored in month long supply-chain attack
Daemon Tools, a widely used app for mounting disk images, has been backdoored in a monthlong compromise that has pushed #malicious updates from the servers of its developer, researchers said Tuesday.
#security #supplychain -
Popular #LiteLLM #PyPI package #backdoored to steal #credentials , auth #tokens
The #TeamPCP #hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI & claiming to have stolen data from hundreds of thousands of devices during the attack.
LiteLLM is an open-source #Python library that serves as a gateway to multiple large language model ( #LLM ) providers via a single #API.
#privacy #security #supplychain -
check out the write-up at https://rad.ctrlc.hu:443/raw/rad:z46AkAERuXAzqZcDRKvE7byRbkga1/7a27b7a350ccadadc2d1bd776747a06393fb50ab/writeup.pdf
for more weird details of the #nsa #backdoored #SBT #military #crypto #device.
-
another interesting detail with this SBT #military #crypto #device #backdoored by the #nsa is that it contains a weird virtual machine, this handles templating of messages and fixed point math, and uses only 2 data "registers" and a pointer register.
-
some interesting details, the #nsa #backdoored #phillips device runs a 8051 mcu. there's a print subroutine, that pops the return address from the stack, and prints the litteral chars from that address onwards until it finds a byte which has the top bit set. then it returns to the address after this last char. of course this is no calling-convention that any disassembler knows, so it throws them off.
2/n
-
The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
https://www.cryptomuseum.com/crypto/philips/ua8295/back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:
https://rad.ctrlc.hu/nodes/rad.ctrlc.hu/rad:z46AkAERuXAzqZcDRKvE7byRbkga1
also on the bad site: https://github.com/stef/UA-8295-NSA
update: it's a thread: 1/n
-
The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
https://www.cryptomuseum.com/crypto/philips/ua8295/back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:
https://rad.ctrlc.hu/nodes/rad.ctrlc.hu/rad:z46AkAERuXAzqZcDRKvE7byRbkga1
also on the bad site: https://github.com/stef/UA-8295-NSA
update: it's a thread: 1/n
-
The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
https://www.cryptomuseum.com/crypto/philips/ua8295/back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:
https://rad.ctrlc.hu/nodes/rad.ctrlc.hu/rad:z46AkAERuXAzqZcDRKvE7byRbkga1
also on the bad site: https://github.com/stef/UA-8295-NSA
update: it's a thread: 1/n
-
The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
https://www.cryptomuseum.com/crypto/philips/ua8295/back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:
https://rad.ctrlc.hu/nodes/rad.ctrlc.hu/rad:z46AkAERuXAzqZcDRKvE7byRbkga1
also on the bad site: https://github.com/stef/UA-8295-NSA
update: it's a thread: 1/n
-
The #NSA with the help of #philips #backdoored (again!) a european military messaging #device in the 80ies, a few years ago the fine people of the #cryptomuseum published everything they knew about it - including a #firmware dump:
https://www.cryptomuseum.com/crypto/philips/ua8295/back then i #reverseEngineered this, and last week finally cleaned it up, and publish it today:
https://rad.ctrlc.hu/nodes/rad.ctrlc.hu/rad:z46AkAERuXAzqZcDRKvE7byRbkga1
also on the bad site: https://github.com/stef/UA-8295-NSA
update: it's a thread: 1/n
-
#Cocaine in Private Jets and Sex Toys: What the #FBI Found on its Secretly #Backdoored #Chat App
Private jets loaded with cocaine landing at an airport in #Germany. A #trafficker stuffing a racing sail boat with drugs and entering a tournament to blend in with other racers before speeding off. Vacuum-sealed layers of #methamphetamine inside solar panels. And nearly 60 kilograms of drugs hidden inside a shipment of sex toys.
-
Backdoored Malware Reels in Newbie Cybercriminals – Source: www.darkreading.com https://ciso2ciso.com/backdoored-malware-reels-in-newbie-cybercriminals-source-www-darkreading-com/ #rssfeedpostgeneratorecho #DarkReadingSecurity #CyberSecurityNews #DARKReading #Backdoored
-
Sellers of Anom, the FBI's Secret #Backdoored Phone, Plead Guilty
The court records released as part of the plea deals also provide new insight into how some of the phone sellers discussed drug #trafficking on their #Anom devices as well.
#privacy #security #backdoorhttps://www.404media.co/sellers-of-anom-the-fbis-secret-backdoored-phone-plead-guilty/
-
Government to Name ‘Key Witness’ Who Provided #FBI With #Backdoored #Encrypted #Chat App #Anom
#privacy #security -
#xz / #liblzma got #backdoored during a #Debian release build, that was certainly not on my bingo card for this year.
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
PSA Upstream #xz #repository and xz tarballs have been #backdoored, leading to #opensshd #vulnerability
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
PSA Upstream #xz #repository and xz tarballs have been #backdoored, leading to #opensshd #vulnerability
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
PSA Upstream #xz #repository and xz tarballs have been #backdoored, leading to #opensshd #vulnerability
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
PSA Upstream #xz #repository and xz tarballs have been #backdoored, leading to #opensshd #vulnerability
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
PSA Upstream #xz #repository and xz tarballs have been #backdoored, leading to #opensshd #vulnerability
https://www.openwall.com/lists/oss-security/2024/03/29/4 -
#HuggingFace, the #GitHub of #AI, hosted code that #backdoored user devices
#privacy #exploit #malware -
4-year campaign #backdoored #iPhones using possibly the most advanced #exploit ever
#security #privacy -
#Android Devices With #Backdoored #Firmware Found in US Schools - SecurityWeek
A global #cybercriminal operation called #BadBox has infected the firmware of more than 70,000 Android #smartphones, #CTV boxes, and #tablets with the #Triada #malware.
https://www.securityweek.com/android-devices-with-backdoored-firmware-found-in-us-schools/
-
This month, 2 research teams independently discovered a new #Mac #malware family: JokerSpy.
One infected system was at a prominent Japanese #cryptocurrency exchange. 🪙👀
#Apple #macOS #Macintosh #backdoored #RAT #crypto #CryptoNewshttps://www.intego.com/mac-security-blog/jokerspy-backdoor-mac-malware-discovered-in-the-wild/
-
To what extent are fediverse instances openly #neocon, neocon sympathisers, closet neocon with signals of virtue, or neocon #backdoored?
Part of us thinks the #neoconQuotient is higher than expected, or 70%-80%. We are basing this figure on a range of intuitive assessments.
And yes this still makes fedi better than the dotcons.
-
To what extent are fediverse instances openly #neocon, neocon sympathisers, closet neocon with signals of virtue, or neocon #backdoored?
Part of us thinks the #neoconQuotient is higher than expected, or 70%-80%. We are basing this figure on a range of intuitive assessments.
And yes this still makes fedi better than the dotcons.
-
@kubikpixel @schurt3r Sonst würde #Apple nicht #Sicherheitsfeatures streichen und Kund*innen aus #China auf ne #Govware - #backdoored #iCloud pushen...
https://www.youtube.com/watch?v=ae4rVnCH0zE -
@kubikpixel @schurt3r Sonst würde #Apple nicht #Sicherheitsfeatures streichen und Kund*innen aus #China auf ne #Govware - #backdoored #iCloud pushen...
https://www.youtube.com/watch?v=ae4rVnCH0zE -
@kubikpixel @schurt3r Sonst würde #Apple nicht #Sicherheitsfeatures streichen und Kund*innen aus #China auf ne #Govware - #backdoored #iCloud pushen...
https://www.youtube.com/watch?v=ae4rVnCH0zE -
"A 'secure' #Backdoored encryption" is a complete lie and equally an insult.
If secure #encryption becomes illegal, *only* criminals would have it! 🧐
-
Mongolian cert auth (manages trust for #https encryption) served #backdoored client installer.
Never know if you can really trust that certificate authority.
Use Tor .onion Hidden Service domains wherever possible- avoid #MITM. #Infosec #Cybersecurity
https://www.zdnet.com/article/website-of-mongolian-certificate-authority-backdoored-served-malware/