Author Topic: The Misc Security Thread  (Read 1391 times)

0 Members and 1 Guest are viewing this topic.






jr

  • Jr. Member
  • **
  • Posts: 71
  • Respect: +39
    • View Profile
Re: The Misc Security Thread
« Reply #5 on: June 13, 2017, 10:29:09 am »
+1
the Siemens part is crazy:

https://www.wired.com/story/crash-override-malware
Read through this yesterday. Definitely crazy stuff. The fact that it only seemed to be a "dry run" makes you have to believe that something major will happen in the near future. Whoever wrote it will refine it even more before hitting something hard.

At some point some Mr. Robot style stuff is going to happen where our bank account info and digital life records will be erased or corrupted, and it's going to be pandemonium.

adarqui

  • Administrator
  • Hero Member
  • *****
  • Posts: 29187
  • who run it.
  • Respect: +6747
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #6 on: June 14, 2017, 04:52:48 pm »
0
the Siemens part is crazy:

https://www.wired.com/story/crash-override-malware
Read through this yesterday. Definitely crazy stuff. The fact that it only seemed to be a "dry run" makes you have to believe that something major will happen in the near future. Whoever wrote it will refine it even more before hitting something hard.

ya man, the future is looking like a mess.

I love how people are downplaying that article, "oh the worm is so noticeable, it's signatures are full of red flags". That's not how this shit works. Once inside internal networks, it's hard af to detect this stuff. Internal network security is a mess. And like you said, it could be a dry run. People aren't going to deploy their best tech in a dry run.

Quote
At some point some Mr. Robot style stuff is going to happen where our bank account info and digital life records will be erased or corrupted, and it's going to be pandemonium.

decentralized currency will save us. got to get on that coin life.

8|

adarqui

  • Administrator
  • Hero Member
  • *****
  • Posts: 29187
  • who run it.
  • Respect: +6747
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #7 on: June 14, 2017, 05:05:29 pm »
0
http://www.politico.com/magazine/story/2017/06/14/will-the-georgia-special-election-get-hacked-215255

that article is nuts..

this line got me:

Quote
The FBI was called in to investigate to determine whether Lamb and Grayson—still unidentified in media reports—had committed a crime. The FBI determined they had not but told Lamb he should “probably just delete” the files he’d collected from the site, which he says he did.

Wtf? Man times have really changed.. HEH!



adarqui

  • Administrator
  • Hero Member
  • *****
  • Posts: 29187
  • who run it.
  • Respect: +6747
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #10 on: January 01, 2018, 06:24:10 pm »
0
nothing major, not even necessarily security related .. more "scraping related" and data mining etc.

18:20 <@run> just noticed, strava uses incremental, sequental numeric id's for activities: https://www.strava.com/activities/1336347136
18:20 < polybot> 8.7 mi Run Activity on January 1, 2018 by Andrew D. on Strava
18:20 <@run> just going 5,4,3,2,1 works
18:20 <@run> lmao
18:21 <@run> pcap, for example: https://www.strava.com/activities/1000000000
18:21 <@run> lol
18:21 < polybot> Strava Runner Profile | P E. : P E. is a runner from Berlin, Berlin, Germany. Join Strava to track your activities, analyze your performance, and follow friends. Strava members can plan routes, participate in motivating challenges, and join clubs. Get started by signing up for free.
18:22 <@run> https://www.strava.com/activities/100000
18:22 <@run> lol
18:22 < polybot> 20.5 km Mountain Bike Ride on October 16, 2009 by Wari W. on Strava

adarqui

  • Administrator
  • Hero Member
  • *****
  • Posts: 29187
  • who run it.
  • Respect: +6747
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #11 on: October 04, 2018, 09:44:07 am »
0
crazy article.

funny line:

Quote
Two of Elemental’s biggest early clients were the Mormon church, which used the technology to beam sermons to congregations around the world, and the adult film industry, which did not.

https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies

hardware backdoor. major shit.


LBSS

  • Hero Member
  • *****
  • Posts: 11167
  • plugging away...
  • Respect: +5596
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #13 on: October 08, 2018, 11:22:46 pm »
+1
apparently bloomberg might have got trolled?? if so, damn. if not, damn. thus, damn.

whoa. i saw that story yesterday. didn't read the whole thing but that would be some incredibly elaborate trolling. and to what end? why embarrass bloomberg and the chip manufacturer?
Muscles are nonsensical they have nothing to do with this bullshit.

- Avishek

handstand + backflip + flag

adarqui

  • Administrator
  • Hero Member
  • *****
  • Posts: 29187
  • who run it.
  • Respect: +6747
    • View Profile
    • Email
Re: The Misc Security Thread
« Reply #14 on: October 09, 2018, 10:07:37 am »
0
apparently bloomberg might have got trolled?? if so, damn. if not, damn. thus, damn.

whoa. i saw that story yesterday. didn't read the whole thing but that would be some incredibly elaborate trolling. and to what end? why embarrass bloomberg and the chip manufacturer?

well, people who want to believe it and use it, will be able to. so, if it does end up being debunked by the official intel community & the "hack" community, i'd look to see who keeps pushing the story (ie people with an agenda against china etc). I doubt Bloomberg would put out an intentionally false or embellished story, but they could definitely have been "duped" by some slick groups. I wouldn't be surprised if, at some point, Trump goes on about it at rallies etc..

easiest way to make a dent in China's electronics manufacturing, is to make it a national security issue, which it legitimately is.

the hack community has come out pretty strongly against it, so far.. usually they get behind stuff like that, digging and finding more details. with this one, they just seem to be digging and not being able to corroborate big pieces of it.

dno not following real close.

but def crazy if it ends up being "fake".

pc!