Because the update mechanisms didn’t use TLS or cryptographic signatures to auth… @ unidentified | Moera

Try all Moera features — View in Web Client

Back to Timeline

unidentified
07-08-2024 23:31

Because the update mechanisms didn’t use TLS or cryptographic signatures to authenticate the connections or downloaded software...

What! The! Fuck!

https://arstechnica.com/security/2024/08/hacked-isp-infects-users-receiving-unsecure-software-updates/

Mac and Windows users infected by software updates delivered over hacked IS…

DNS poisoning attack worked even when targets used DNS from Google and Cloudflare.

Ars Technica•ARSTECHNICA.COM

🤦2