 |
Post Ak79ghPi2mO1WVhysa by [email protected] |
 |
More posts by [email protected] |
|
Post #Ak78qTrPBoZsQjlNVA by [email protected] |
|
0 likes, 2 repeats |
|
|
|
good lord. I pulled a microSD card out of a Raspi inside an IoT product and it … |
|
|
|
Post #Ak795yz5kmjfIrkaP2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I've also been able to de-stealth a "stealth startup" on linked i… |
|
|
|
Post #Ak79MqK9CpUzMmdenw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
also, you punks are writing python 2 code in 2021? come on, who does that?I mea… |
|
|
|
Post #Ak79TQbzCaC7eG7fFo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
oh cool you can pull the GPS history of a truck from azure without any login, y… |
|
|
|
Post #Ak79abo5ybIAOgD7PU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
this might be UPS trucks. I should probably not query any of these GPS histories |
|
|
|
Post #Ak79ghPi2mO1WVhysa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
also they're spamming 9 lines to syslog every minute.this is a microsd card… |
|
|
|
Post #Ak7AG3NMNgxHlzT3Xk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
oh sweet jesus they logged into slack from this machine('s image)I have the… |
|
|
|
Post #Ak7AOTjkFt1ZqZxIuG by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@foone do you need an OVE? |
|
|
|
Post #Ak7Ab3gARrconMHSca by [email protected] |
|
0 likes, 1 repeats |
|
|
|
this is deeply embarrassing. I have lists of their duckduckgo and google search… |
|
|
|
Post #Ak7AfIWLD52Dz2hpJo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone đż |
|
|
|
Post #Ak7AhrGD1FbcJ3NgkS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cadey a what? |
|
|
|
Post #Ak7AjD57NGe4Gyq17g by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@foone diet CVE |
|
|
|
Post #Ak7BL9uVc3GpRSyGlU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone holy dang that sounds⌠so bad. Just really, really bad. And Python 2??… |
|
|
|
Post #Ak7BUOINV0Egf8XPNo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
oh sweet jesusthey automatically scp up some logs to a server somewhere. Did th… |
|
|
|
Post #Ak7BnF2A9orfRMwSuG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I have a file here with multiple lines like:sudo sshpass -p PASSWORDHERE scp /p… |
|
|
|
Post #Ak7BnHiQBfr7l0jF3I by [email protected] |
|
0 likes, 1 repeats |
|
|
|
well I'm putting this away so I don't accidentally hack them. |
|
|
|
Post #Ak7CHX6LY05OABLK9w by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cadey nah. I didn't get this device legitimately, so I can't really re… |
|
|
|
Post #Ak7Ce1RTQDHAdNwscq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone it worked on the developerâs machine⌠so they shipped it! |
|
|
|
Post #Ak7CyStd3dcvZbrkum by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone it would have made very little difference if they shipped a key instead … |
|
|
|
Post #Ak7CySyalBb3p0BieO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@panda could have individual keys per device and revoke them as the devices lea… |
|
|
|
Post #Ak7DFUIF7JB6pSUoFc by [email protected] |
|
0 likes, 2 repeats |
|
|
|
this is one of the many reasons I'm not a security researcher.it's a ta… |
|
|
|
Post #Ak7Dr91edaKDsBh24e by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@[email protected] ohhhhh nono no no nono to all of this but no to this |
|
|
|
Post #Ak7E56qFYPlT9b19Wq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone lol better not talk about a company who sells emmbedded circuits for sat… |
|
|
|
Post #Ak7E56vZEe1BQ5VOoi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@randagodron they've got the excuse that no one will be able to tell, becau… |
|
|
|
Post #Ak7EUTPMn1uSNjXOVs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone LOG IN TO THEIR EMAIL AND START SENDING TONS OF SPAM YOU PUSSY |
|
|
|
Post #Ak7EUTV2RwRkfKBvM0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@kirby their company is only two cities over it would be trivial for them to fi… |
|
|
|
Post #Ak7EfINo7aMJNCy7k0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone if it works on your machine we'll make a docker image of your machin… |
|
|
|
Post #Ak7EfITTmUtbencea8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@thememesniper who needs a docker image? just clone the drive of the developer … |
|
|
|
Post #Ak7FJniB3te47WoLbc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone The choice paralysis alone is insane! |
|
|
|
Post #Ak7FJuEIpMuKKtt5Vo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Also I'm a reverse engineer. There's no reverse engineering here!I unsc… |
|
|
|
Post #Ak7G1sVEbqC1iom6Mq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Also this isn't the only opsec failure they've made but if I say what t… |
|
|
|
Post #Ak7GDAh9JNeRKTjV7g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone way back when I was trying to fix a first generation Harris Broadcast HD… |
|
|
|
Post #Ak7HMjT3UrlVjeGOfI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone obverse engineering |
|
|
|
Post #Ak7HV5EmRQ8JZNZJKa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone I have done that. It was not pretty. |
|
|
|
Post #Ak7HV5Ko50xBs4O7iy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@elronxenu yeah me too, how do you think I know this? :) |
|
|
|
Post #Ak7K9iDz6hJjyghIg4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone i don't really understand completely what is explained but i read th… |
|
|
|
Post #Ak7K9iKMiyQCITgOci by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone @ciredutempsEsme ask, and we shall try to answer. Any question you have,… |
|
|
|
Post #Ak7KC5Dia3RtsQhfAe by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I suspect @foone is running a stealth marketing campaign here - I'm now won… |
|
|
|
Post #Ak7LWRY9MxgksPX4uO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@stibbons that's always a good step: asking for help! |
|
|
|
Post #Ak7RyJKu6I47Eg0ZFo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@NormanDunbar nah! I don't do security stuff professionally. Plus I don'… |
|
|
|
Post #Ak7UjHn5rawtxgikqG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@fooneThere are jokes about "it works on my laptop" "we'll j… |
|
|
|
Post #Ak7VPzxc22l5780Xs8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone âlook when we said it wanted to make this open source this wasnât wh… |
|
|
|
Post #Ak7c1nw1n4ToXwg2uu by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone |
|
|
|
Post #Ak7eS8Q4S4IBW2PdgW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone I reported a bug to Synology that they spam several lines to syslog ever… |
|
|
|
Post #Ak7fOTdFk2zk6LOjtg by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@foone Too bad youâre a nice person and wonât dd a disk image and share it … |
|
|
|
Post #Ak7flwtt5ZpvXHN4KW by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@foone After THIS weeks "news", you ask THAT? ;)"There's no … |
|
|
|
Post #Ak7gddH0HJlaIhmWP2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone I imagine the developer was being paid by the hour. The manager asked fo… |
|
|
|
Post #Ak7oLwxZ93IJmIlkOG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone I want off Mr. IoT's Wild Ride |
|
|
|
Post #Ak7qiCs6rgydPJxQq8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone can i have a copy please?~ |
|
|
|
Post #Ak7w5zbgKpRWzIR1v6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone |
|
|
|
Post #Ak7wTN6H9XsyVmtQHI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@alexlomas @foone And what do we do about it? I'm a dev in an IoT field and… |
|
|
|
Post #Ak7wTNCIn8hqoTiEfg by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@reinierl @foone Donât use Pis in production devices?Moreover companies shoul… |
|
|
|
Post #Ak7yBEs3D8ilgUikPw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fooneCompanies get mad because their security failings are pointed out all the… |
|
|
|
Post #Ak7yBEymo66o1Ns7uq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@tony @foone if necessary just anonymize the findings and create a throwaway ac… |
|
|
|
Post #Ak85K4fzBOweLsEnSa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone Sound like it was:"It's working on my machine, just don't t… |
|
|
|
Post #Ak85nLSbrHgcnywF60 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone đ¤Śââď¸ they might want to push a patch that does some⌠cleanup. |
|
|
|
Post #Ak8781VLLheWwrdo1Y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fooneDoes this by any chance have data from a region where GDPR applies? |
|
|
|
Post #Ak8781af1vuFDM83JQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@__jz sadly not. I keep saying California should join the EU but no one listens… |
|
|
|
Post #Ak88r9fFxQ8tF1MVcG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone move fast, expose things? |
|
|
|
Post #Ak8ApOMWXXT29ft49A by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I just noticed this is how they heatsinked that raspberry pi I yanked the SD ca… |
|
|
|
Post #Ak8FvaMhKHxatCk18S by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone this thread just slowly became worse and worse as I was reading it :blob… |
|
|
|
Post #Ak8FvaT4wZ43Czj756 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ThreadTree unroll |
|
|
|
Post #Ak8Fvaxv5tjake9k9Y by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Two9A Your thread has been unrolled! You can view the full conversation at: ht… |
|
|
|
Post #Ak8GYrkecMxQ6dg22S by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone I'm imagining the dev said "hey, it works!" and five minut… |
|
|
|
Post #Ak8HjVOOBlLTtrtqe8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Two9A Your thread has been unrolled! You can view the full conversation at: ht… |
|
|
|
Post #Ak8IGu9n8TDkGJzvv6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone are there any dates in there that reveal when it was developed? Not just… |
|
|
|
Post #Ak8IGuF6ohTSWoUBCy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@parsley all the timestamps point to 2021-2023 |
|
|
|
Post #Ak8Yisd40ZY4tm3FBI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@BenAveling @foone It would be too many questions and I guess i would fond the … |
|
|
|
Post #Ak8Yisj5eAMxCSs3Zg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone @ciredutempsEsme you can probably find answers to specific questions on … |
|
|
|
Post #Ak8a1ALoxPb31qGlQO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone as a 30 year build and release professional, yes, this sort of sloppy de… |
|
|
|
Post #Ak8a1ASYYMz5MjQ8vI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@trouble yeah I'm one too (just a couple decades less experience) so I know… |
|
|
|
Post #Ak8guUzwUbxeiUnuFc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone Iâm pretty impressed by the diversity of their incompetence. |
|
|
|
Post #AkAKLpfzoHw62RSUlM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone this is the ultimate embodiment of the old joke about âworks on my mac… |
|
|
|
Post #AkCKjKmKjANpTcY6rY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@foone truly open source software: every device has a copy of all the sources! |
|
|
|
Post #Al8p6tn6JxQT5AknIG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone oh no... i just started learning Python in 2024... đ What should I le… |
|
|
|
Post #Al8p6ttpuuoVQ3uAnA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Hackulaura Python is fine: just you should be learning Python 3, not Python 2 |
|
|
|
Post #Al8q9ExegJ3vH3N33Y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone Minimum Viable Product, baby!!! YOLO! đŹ |
|
|
|
Post #Al9cuDoXYjQV7vZkSe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone in Germany, which is infamously backwards and close-minded about i.e. di… |
|
|
|
Post #Al9qoHLUum3rhV3FdQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone Dev to grumbly tester: "Hey, it works on my machine :) "Overh… |
|
|
|
Post #AlBcjtXIUE0jeiVQAa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@foone probably because it worked on their machine ÂŻâ \â â (â ăâ )â ďż˝… |
