• 5 Posts
  • 478 Comments
Joined 1 year ago
cake
Cake day: June 17th, 2023

help-circle

  • When accessed by BleepingComputer, however, the link returned a 404 (Not Found), and according to several others who tried to access the URL, no content ever existed at the location from the beginning.

    This really doesn’t mean anything, it’s not unheard of for malicious actors to not set up their C&C servers until later on. This has actually been exploited by law enforcement in other cases also, they simply registered the domain themselves and took control away ahead of the attacker.

    There’s a risk with setting up the C&C that it could be traced back to the attackers. By not setting it up until it’s needed you avoid that risk until it becomes necessary.


  • Yeah I read this article on another post, I’m not sure that’s the whole story.

    From what I remember, he was running a few “shops”. These don’t actually sell games, but they can be accessed by a piece of homebrew software on the switch, and then you connect to the “shop” to download games directly to the device - this was done instead of manually copying install files to the SD card, installing, and then deleting the original files to save space; or instead of installing over USB. The shops were much easier, not least because removing the SD card to copy games from a PC required a reboot, and rebooting an OG hacked Switch could be kind of a pain.

    I think the “sales” he did were actually just donations that got you early access to titles that weren’t widely available yet. However, it’s generally when you start taking money for these things that the shit hits the fan and the hammer comes down.




  • What are your plans when end of life /support comes to Windows ten?

    Switch to Linux and run virtual machines when I need to use Windows.

    Right now I don’t quite have the drive to do it, but an end to support for Windows 10 would push me over the edge. I just can’t stand Windows 11, not even because of all the bullshit but just the way it mandates the UI structure - last time I tried it my dealbreaker was that you can’t just have it always display all taskbar icons, you have to manually force each one to show. If a new icon comes up, it will be hidden.





  • Erm, WhatsApp would suggest otherwise.

    WhatsApp was the vector for zero click access to a target’s phone from Israel’s weapons grade hacking Pegasus toolkit. They would send a video call, typically in the middle of the night, and with no input from the used they’d get full access. My personal belief is that they used functionality WhatsApp itself uses to access user data.

    There was also an encrypted phone called ANOM, which had this trick calculator app with a hidden encrypted messager. “Made for criminals, by criminals”. Except, when the guy started his business he got investment from the FBI and Australian Federal Police to pay for the servers and some of the phones themselves. Basically every time it sent an encrypted message it sent a separate encrypted message to the ANOM servers. It’s entirely possible (perhaps even likely) that WhatsApp would do this also.

    As for Google, they’re truly insidious. Lots of banks now require you to connect to Google captcha servers - they don’t give you the pictures, it’s just the back end, basically the tracking parts. Then there’s the controversy about them collecting location data when users have said no. They absolutely do collect data they shouldn’t.