IIRC this is how those Elon musk crypto livestream hacks worked on YouTube back in the day, I think the bad actors got a hold of cached session tokens and gave themselves access to whatever account they were targeting. Linus Tech Tips had a good bit in a WAN show episode
kryllic
- 1 Post
- 16 Comments
Joined 2 years ago
Cake day: July 3rd, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
No prob! I think Ars Technica had the best writeup imo: https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/
In a nutshell, a backdoor was intentionally planted by a malicious actor in xz Utils, an open-source data compression utility widely used in Linux and other Unix-like operating systems. This discovery was made by Andres Freund, a developer and engineer working on Microsoft’s PostgreSQL offerings. He was troubleshooting performance problems on a Debian system. Specifically, SSH logins were consuming excessive CPU cycles and generating errors with Valgrind, a memory debugging tool. Through sheer luck and Freund’s careful eye, he eventually discovered that these issues were the result of updates made to xz Utils. Upon closer inspection, he found that updates to xz Utils were the result of a maliciously inserted backdoor. The backdoor, present in xz Utils versions 5.6.0 and 5.6.1, manipulated the sshd executable, allowing anyone with a predetermined encryption key to upload and execute arbitrary code on affected devices.
Never heard of this, but it looks like a FOSS version of stellarium? Way cool, and the site gives nostalgic Web 1.0 vibes
3·1 year agoThis is exciting! Cant wait to try it out once that flatpak is released!
If you can’t beat 'em join 'em
Linux users having strong opinions? I’m shocked I tell you, SHOCKED!
Intel Arc is there for you: https://www.intel.com/content/www/us/en/products/details/discrete-gpus/arc.html
I must be living under a rock because this is the first I’ve heard of USB 4. Is it just a speed bump or does it affect the type of data that can be transferred? In my experience I’ve had issues using a usb 2.0 flash drive to use a live image of a Linux iso in a 3.1 port
8·1 year agoProbably used something like CodeIMG: https://codeimg.io/
And? This is like looking up hammers that don’t leave fingerprints on the grip so you can get away with murder. The tool itself isn’t the issue, the motive is, as well as the person responsible for using it.
can’t wait
Or better yet, that 1% can run in a VM
Found you, Rich Evans
Actionscript, my beloved