Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.social/users/dragoonaethis/statuses/112181443164416629">Dragoon Aethis (dragoonaethis@mstdn.social)'s status on Saturday, 30-Mar-2024 08:09:16 JST</a><a href="https://mstdn.social/@dragoonaethis" title="dragoonaethis@mstdn.social"><img src="https://gnusocial.jp/avatar/203998-48-20231025172831.webp" width="48" height="48" alt="Dragoon Aethis" style="position: absolute; left: 0; top: 0;">Dragoon Aethis</a><div><a href="https://social.hackerspace.pl/@q3k/112180738200838365" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://social.hackerspace.pl/@q3k">@q3k</a> <a href="https://social.treehouse.systems/@marcan">@marcan</a> tbh the fact that it did trigger alarms in those systems, and despite that nobody noticed anything suspicious until a downstream user noticed the backdoor's side effects after upgrading is also telling.</p><p>I'm on the receiving end of some mandatory analyzers and due to the sheer volume of hits most of the time I don't really care about why something was found, rather just how to get rid of it. They could safely ignore these systems because of this behavior.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2879874#notice-5721954">In conversation</a><time datetime="2024-03-30T08:09:16+09:00" title="Saturday, 30-Mar-2024 08:09:16 JST">about 8 months ago</time> <span>from <span><a href="https://mstdn.social/@dragoonaethis/112181443164416629" rel="external" title="Sent from mstdn.social via ActivityPub">mstdn.social</a></span></span><a href="https://mstdn.social/@dragoonaethis/112181443164416629">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Dragoon Aethis (dragoonaethis@mstdn.social)'s status on Saturday, 30-Mar-2024 08:09:16 JSTDragoon Aethis
in reply to
- q3k :blobcatcoffee:
@q3k @marcan tbh the fact that it did trigger alarms in those systems, and despite that nobody noticed anything suspicious until a downstream user noticed the backdoor's side effects after upgrading is also telling.
I'm on the receiving end of some mandatory analyzers and due to the sheer volume of hits most of the time I don't really care about why something was found, rather just how to get rid of it. They could safely ignore these systems because of this behavior.
In conversationabout 8 months ago from mstdn.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice