2024-03-30
nothing to see here, just properly documenting the fixed defects in the backdoor code 😂 [image]
Ars Technica
Researchers find malicious code in versions of the compression tool XZ Utils that were incorporated into Linux distributions from Red Hat, Debian, and others
Malicious code planted in xz Utils has been circulating for more than a month. — Researchers have found a malicious backdoor …
you gotta appreciate the way they shipped the backdoored object file. added some “test” data to the source tree that gets unxz'd and (dd) carved in a specific way, that is fed into a deobfuscator written in.. awk script and the result gets unxz'd again [image]
Ars Technica
Researchers find malicious code in versions of the compression tool XZ Utils that were incorporated into Linux distributions from Red Hat, Debian, and others
Malicious code planted in xz Utils has been circulating for more than a month. — Researchers have found a malicious backdoor …
2023-07-12
https://www.wired.com/... “hey @thegrugq plz sell me some Tor de-anonymization 0days. I'm a senior marijuana seed peddler from canada who is confident this technology can greatly further my business” [image]
Wired
A US court sentences Roger Thomas Clark, Silk Road's second-in-command behind Ross Ulbricht, to 20 years, after his extradition from Thailand in June 2018
Andy Greenberg / Wired :