#mitmattack — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #mitmattack, aggregated by home.social.
-
Passwordless Authentication Standard FIDO2 Flaw Let Attackers Launch MITM Attacks https://gbhackers.com/fid02-mitm-vulnerability/ #passwordlessauthentication #AuthenticationSecurity #cybersecurity #Vulnerability #MitMAttack #FIDO2
-
Passwordless Authentication Standard FIDO2 Flaw Let Attackers Launch MITM Attacks https://gbhackers.com/fid02-mitm-vulnerability/ #passwordlessauthentication #AuthenticationSecurity #cybersecurity #Vulnerability #MitMAttack #FIDO2
-
Passwordless Authentication Standard FIDO2 Flaw Let Attackers Launch MITM Attacks https://gbhackers.com/fid02-mitm-vulnerability/ #passwordlessauthentication #AuthenticationSecurity #cybersecurity #Vulnerability #MitMAttack #FIDO2
-
Passwordless Authentication Standard FIDO2 Flaw Let Attackers Launch MITM Attacks https://gbhackers.com/fid02-mitm-vulnerability/ #passwordlessauthentication #AuthenticationSecurity #cybersecurity #Vulnerability #MitMAttack #FIDO2
-
The Limitations of Google Play Integrity API (ex SafetyNet) – Source: securityboulevard.com https://ciso2ciso.com/the-limitations-of-google-play-integrity-api-ex-safetynet-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #maninthemiddleattack #mobileappdevelopment #APISecurityAnalysis #CyberSecurityNews #SecurityBoulevard #androidsecurity #NewsandInsights #MobileSecurity #APIsecurity #MitMAttack #SafetyNet
-
The Limitations of Google Play Integrity API (ex SafetyNet) – Source: securityboulevard.com https://ciso2ciso.com/the-limitations-of-google-play-integrity-api-ex-safetynet-source-securityboulevard-com/ #rssfeedpostgeneratorecho #SecurityBloggersNetwork #maninthemiddleattack #mobileappdevelopment #APISecurityAnalysis #CyberSecurityNews #SecurityBoulevard #androidsecurity #NewsandInsights #MobileSecurity #APIsecurity #MitMAttack #SafetyNet
-
@confluency
POTENTIAL #SECURITY THREAT: The above website, #phanpyDotSocial is #CloudGlare and may be a #socialEngineering attack on #fediverse users to open them up to #accountTakeover.If the above website asks one to login to ones #mastodon instance with their password then its a CloudGlare #phishing website/#honeypot.
We will not access on ethical grounds.
Tagging some boosters to warn them @njoseph @kkremitzki @michelin
#MITMAttack #MITMaaS #ClOudFlAre #fediverseAttack #cyberAttack
-
Our namesake, #DickSmith has rallied heavily against #aggregatorSites for #travel, like #Trivago, #TripAdvisor and #AirBnB.
Now imagine ENTIRE INTERNET AGGREGATION!
Someone ought contact Dick and tell him about #CloudFlare, #Amazon and #Akamai.
Forget buying a little ad in a corner of a #newspaper. He might need to buy the entire newspaper for a week to cover this.
We doubt even he has the funds to do this.
#entireInternetAggregation #internetAggregation #mITMAttack #mitMaaS #encryptionScam
-
The #IndependentAustralia.net publication is so independent it goes through US #LiteSpeed servers. Lol
Truthfully we had them on a higher pedestal than most #publications, but lost respect for them when we saw they allowed themselves to be #MITMd.
-
@StartpageSearch
There are two caveats to the above to be mindful of.1. Unfortunately CloudFlare is used by #Visa last we checked but Visa have a bespoke setup that negates the need for the aforementioned '#CFRay'.
2. Be mindful that the #UBlock addon fetches all its #blockLists from CloudFlare. May be reason for not blocking or warning of the #MITMAttack, and why BCMA #addon is neccessary.
Don't trust BCMA.xpi? — Convert the #XPI to a #ZIP file and read the code.
https://notabug.org/dCF/deCloudflare/src/master/subfiles/about.bcma.md
-
@mcg
Hello Dear Matthew,As we see (via a quick Ctrl+Shift+E in TorBrowser to bring up the NetworkTab), Brave goes through not only Amazon servers but through Cloudfront which is a type of MITM Attack like what Cloudflare has been conducting by stealth circa 2009.
Such a #MITMAttack makes Brave an Amazon asset, and thus not ethical in any way.
-
We are delighted to inform that Mozilla recently (finally, bless) approved the #BCMA Add-on by https://crimeflare.eu.org!
FIND IT HERE:
https://addons.mozilla.org/en-US/firefox/addon/stopcloudflare/ADD-ON XPI FILE (repo also linked to on above page):
https://git.disroot.org/dCF/deCloudflare/src/branch/master/addons/releasesREPO README
https://git.disroot.org/dCF/deCloudflare/src/branch/master/subfiles/about.bcma.mdThough its a small step, we think it represents a watershed moment for the movement against the #MITMAttack on the web.
-
Dear sweet Jesus,
Australia's #govtServices now all go through #Akamai. That #USCorporation that rose alongside its partnership with #Microsoft.
Not only that, its locking select individuals out from accessing said govt services. Like the #TaxOffice and #SocialServices.
Was nice knowing you, #Australia.
#humanServices #australiaJustDied #clientStateOfUSA #deleteAkamai #reverseProxy #MITMAttack
-
ITS NOT ABOUT their javascript — its about #surveillance.
Leading ppl to a #CloudFlare'd site, means cf (etc) learn how to target them. If they donate to or contact the website owners, cloudFlare gets a front row seat to the action *before even the website owners*.
It can lead to them being denied #onlineBanking as we revealed yesterday.
Worst part is, 99.9% of the time #website owners and #contributors are *completely unaware* their site is #MITMAttack'd, because their #ISP did the switch.
-
CW: Browser add-ons, privacy
We are not very impressed about this but #TailsOS users have a different #fingerprint to regular #TorBrowser users.
TailsOS adds #uBlock addon
So its arguable that you could match the #fingerprint of a TailOS user by using the #addon.
Its odd that Tails added it (or that #TorProject isn't).
This may change.
Those who are #Cloudflare-aware can use #BCMA (Block Cloudflare MITM Attack).
-
RT @MitiGator
MASS LINE: The internet is where you can express ideas freely (even anonymously with a clever pen-name!)... it's a *disaster* for those in power.
CLASS LINE: Your internet experience is designed by us to divert your attention while we steal from you. No, we won't be discussing Cloudflare — that's part of the #psyop!
-
@MitiGator post_this
Hi Fedizens, you may remember me as #altLink — yelling from the corner of the avatar.In a #Kafkaesque moment of quality frustration I morphed into #MitiGator the #MITM Prevention Alligator. As always, you can follow me and I'll follow you, to let you know when you accidentally toot a dodgy website.
DID YOU KNOW I don't just #Cloudflare-warn? Over the next days I'll share some nice things I can do.
Together, we can 'snap back' against the #MITMAttack!
-
@MitiGator post_this
Hi Fedizens, you may remember me as #altLink — yelling from the corner of the avatar.In a #Kafkaesque moment of quality frustration I morphed into #MitiGator the #MITM Prevention Alligator. As always, you can follow me and I'll follow you, to let you know when you accidentally toot a dodgy website.
DID YOU KNOW I don't just #Cloudflare-warn? Over the next days I'll share some nice things I can do.
Together, we can 'snap back' against the #MITMAttack!
-
@bojkotiMalbona
We realised too late when @MitiGator went off, yes.Isn't it sad when a #permicultureSite, of all things, somehow funds itself #verticallyIntegrated into the #MITMAttack.
We unboosted obviously.
@strypey -
THE GUARDIAN NAME-CHANGE
The Guardian is set to rename themselves, The Amazon Guardian, to pay homage to their MITM Attacker (—we mean: server).
#extortion #TheGuardian #satire #MITMAttack #Amazon #monopoly #duopoly
-
What do you do when the #politicalParty that you like is behind #Cloudflare?
We have that problem, the party is #SustainableAustralia. They have great policies and a plan to stop #overdevelopment and end corruption. Can they though, when they have what we think any reasonable person would call #internetCancer? An effective #MITMAttack on their interface with the public.
-
When describing the ongoing #MITMAttack on #theInternet by the likes of #Amazon, #Cloudflare, #Microsoft, and #Akamai which 'backronym' (back acronym) might you prefer?
• Mafia in the Middle
• Megacorporation in the Middle
• Monopolist in the Middle
• Monopoly in the Middle
• (something else…?)Please justify any given answer.
#takingTheInternetPrivate #reverseProxy #internetCancer #MITM #mafia #extortion #megaCorporations #dotCons #monopoly #monopolists #useI2P #useTor
-
When describing the ongoing #MITMAttack on #theInternet by the likes of #Amazon, #Cloudflare, #Microsoft, and #Akamai which 'backronym' (back acronym) might you prefer?
• Mafia in the Middle
• Megacorporation in the Middle
• Monopolist in the Middle
• Monopoly in the Middle
• (something else…?)Please justify any given answer.
#takingTheInternetPrivate #reverseProxy #internetCancer #MITM #mafia #extortion #megaCorporations #dotCons #monopoly #monopolists #useI2P #useTor
-
If you thought the #banking sector was only under a #MITMAttack by #Cloudflare, think again.
Early research is showing that about 30% of #banks are being served by #Microsoft! — in #Australia, that is!!
You can test whether your bank is under a #MegaCorpInTheMiddle (MITM) Attack by hitting F12 in your #browser while loading the #website.
If the response coming back from yourBankDomain.com says #MicrosoftIIS, cloudflare, #AmazonS3, or #Akamai, you may want to #switchBanks…
…immediately!
-
If you thought the #banking sector was only under a #MITMAttack by #Cloudflare, think again.
Early research is showing that about 30% of #banks are being served by #Microsoft! — in #Australia, that is!!
You can test whether your bank is under a #MegaCorpInTheMiddle (MITM) Attack by hitting F12 in your #browser while loading the #website.
If the response coming back from yourBankDomain.com says #MicrosoftIIS, cloudflare, #AmazonS3, or #Akamai, you may want to #switchBanks…
…immediately!
-
2/2
This is of course our editorialised interpretation of what we believe these instituitions are doing by #pinkWashing, #greenWashing, #wokeWashing and otherwise #NGOWashing the use of the Cloudflare Man-in-the-middle Attack.
Full record of #NGOs partnering with the attackers:
https://web.archive.org/web/20211117052759/https://www.cloudflare.com/galileo/#MITM #MITMAttack #socialJustice #coopted #corruption #conspirators #coConspirators #democracyWashing #NGO
-
CW: Bunnings Australia, privacy
At #Bunnings Warehouse we value your… oh piss off, we send all your data to #Cloudflare.
…and don't contact our "#PrivacyTeam" to have your data removed from our system. Not only will we abuse you. We won't remove your data because "your data belongs to you" so "we" can't remove it from #ourServers.
#yourDataBelongsToYou #abuseOfProcess #language #semantics #doublespeak #Orwellian #1984world #privacy #MITMAttack #MITMaaS #unethical #australia #bunningsWarehouse
-
@lain
That's one contorted thoughtscape, right there. Haha.Cloudflare is the biggest crypto #cyberthreat humanity has seen.
Its basically a #Mafia-style #extortion scheme and #MITMAttack as a service, among other things, but we aren't allowed to talk about them for some reason.
