@wdormann@infosec.exchange cover
@wdormann@infosec.exchange avatar

wdormann

@wdormann@infosec.exchange

I play with vulnerabilities and exploits.
This account mostly exists for testing.
https://twitter.com/wdormann
Once Twitter implodes, you might find me here, on BlueSky as @wdormann.bsky.social or maybe outside somewhere.

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

wdormann , to random
@wdormann@infosec.exchange avatar

Elon Musk Begs Advertisers to Return as Twitter's Revenue Plunges
https://futurism.com/elon-musk-begs-advertisers-return-twitter-revenue
🤔

video/mp4

DemocracyMattersALot ,
@DemocracyMattersALot@mstdn.social avatar

@wdormann

LOL.

faab64 ,

@wdormann I am really sick of people posting links to ShiTwitter all the time. Most of those are available on other platforms but people still using that nazi infesting shit hole as source of information.

wdormann , to random
@wdormann@infosec.exchange avatar

Anybody who ever has the need to desolder things, do yourself a favor and get one of these. You also get an excellent iron with temp control that heats up instantly.

Unless you don't value your time. In that case you can play around with copper braid and spring-loaded plungers to your heart's content.

altomare ,
@altomare@oldbytes.space avatar

@wdormann I had one (ZD-985) and I gave it away to switch back to a good manual pump (Engineer SS-02).

It didn't really work on 6 traces boards, and the unyieldy shape makes it easy to apply too much pressure and damage pads... That and limited desk space.

I might get a Hakko FR301 at some point but 💸

wdormann , to random
@wdormann@infosec.exchange avatar

Dear Microsoft,
You "forgot" the third option of "Don't remind me again".
@deceptivepatterns

wdormann , to random
@wdormann@infosec.exchange avatar

This Microsoft Recall thing...

While it does actually omit things that it knows are sensitive (e.g. incognito mode in recognized browsers) from the screenshots it saves, things that it does not know about are all fair game.

DuckDuckGo browser? Never heard of it. Let's hoover up all the data we can get.
Signal? 🤷‍♂️ I'll just default to saving everything I see there.
You get the picture...

Ailantd ,
@Ailantd@mastodon.art avatar

@GossiTheDog @wdormann @erickolb This should be opt in, not a everything by default. Is this even legal in the EU?

chx ,

@Ailantd @GossiTheDog @wdormann @erickolb any% speedrun from product launch to new EU legislation specifically banning your product.

wdormann , to random
@wdormann@infosec.exchange avatar

HT @bontchev

Somebody figured out the secret technique that 3rd-party AV uses to disable Microsoft Defender so that they themselves can run without interference.

This tool uses this technique to install a null AV product, thus having the effect of simply disabling Microsoft Defender.
https://github.com/es3n1n/no-defender

video/mp4

bontchev ,
@bontchev@infosec.exchange avatar

@fencepost @wdormann Exactly, this was one of the considerations at the time.

Also, don't forget that such a list would have to be kept up-to-date on every Windows machine and that this scheme was invented 3 decades ago when Windows Update didn't exist.

bontchev ,
@bontchev@infosec.exchange avatar

@AthanSpod @wdormann It requires the ability to install programs - probably Admin equivalent. It doesn't require SYSTEM. A user account with Admin privileges can do it.

wdormann , to random
@wdormann@infosec.exchange avatar

Reminder:
It's never been safe to run a program out of a directory that contains other untrusted files.
https://insights.sei.cmu.edu/blog/carpet-bombing-and-directory-poisoning/

https://twitter.com/WithinRafael/status/1782213111296229776

bontchev ,
@bontchev@infosec.exchange avatar

@wdormann Windows really needs a DLLPATH variable, working similar to how the Linux PATH variable works - i.e., only the directories listed there are searched for DLLs in the specified order and the current directory is not searched, unless it is explicitly listed there (which by default it ought not to be).

tuxicoman ,
@tuxicoman@social.jesuislibre.net avatar

@bontchev @wdormann

Executable bit too. In other words, solution is to not use Windows

wdormann , to random
@wdormann@infosec.exchange avatar

Just a backdoor in XZ.
Nothing important.
https://www.openwall.com/lists/oss-security/2024/03/29/4

wdormann OP ,
@wdormann@infosec.exchange avatar

Interesting how this backdoor can lead to an sshd compromise.

"openssh does not directly use liblzma. However debian and several other distributions patch openssh to support systemd notification, and libsystemd does depend on lzma."

wdormann OP ,
@wdormann@infosec.exchange avatar

More about this actor:
https://boehs.org/node/everything-i-know-about-the-xz-backdoor
"libarchive should also be considered compromised until proven otherwise."

Good times...

wdormann , to random
@wdormann@infosec.exchange avatar

So yes, Facebook intercepting Snapchat messages is completely inexcusable.
But at the same time, Snapchat explicitly designed their app to allow message text to be intercepted. (Pictures are end-to-end encrypted)
What was the rationale for this decision, I wonder?

wdormann OP ,
@wdormann@infosec.exchange avatar

Though as I look closer, it appears that Snapchat has been doing cert pinning since 2015 at the latest.
So, if Facebook was intercepting Snapchat traffic in 2016... what exactly were they successfully seeing?
https://github.com/magicguru/SnapchatCertPinning

wdormann , to random
@wdormann@infosec.exchange avatar

Two things would have made macOS CVE-2023-42931 a nothingburger even before Apple patched it.

  1. Don't run old OS versions.
  2. Don't log in to your computer as an admin.
    If you aren't already following these guidelines, you really should.
    https://securityonline.info/cve-2023-42931-macos-flaw-exposed-systems-to-easy-privilege-escalation-patch-now/
  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines
    •