1159

The reality of modern tech (files.catbox.moe)

submitted 10 months ago by Interstellar_1@pawb.social to c/curatedtumblr@sh.itjust.works

82 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] SteefLem@lemmy.world 52 points 10 months ago

I think i read somewhere that the cia said they dont install bugs anymore because now ppl do that themselfs.

[-] Mostly_Gristle@lemmy.world 56 points 10 months ago

Yeah, I've read a bunch of articles over the last few years about how a lot of law enforcement agencies are finding that instead of getting a warrant and doing a bunch of surveillance they can just buy people's private data from a data broker and get more info than they would have been able, or allowed, to gather if they'd gotten the warrant.

[-] T156@lemmy.world 16 points 10 months ago

It's also a lot easier to do it in software, since you don't need to splice wires and leave physical traces like you would have had to do in the day.

A well-configured charger or Flash drive can do that job for you, and can spread itself.

[-] oce@jlai.lu 4 points 10 months ago

USB charger ?

[-] T156@lemmy.world 8 points 10 months ago

Yes, since most modern chargers and cables have internal chips to communicate capabilities with for things like fast-charging. It is not difficult to have the chip identify itself as something else, and execute a payload.

A common attack method is to have it show up as a keyboard, and execute a series of key-sequences when connected to a computer (like opening and executing things through a command prompt).

It is also why you should try and avoid plugging random USB cables/chargers into your phone/computer when out and about, since you don't exactly know if the other end is what it appears to be.

[-] Empricorn@feddit.nl 2 points 10 months ago

I don't know enough about the charger thing to comment on how viable that might be for an attack vector.

But you're definitely right about plugging your mobile device into random ports. Either set your phone to by default only charge and not communicate, use a charge-only cable, or only use your own power bank/charger when away from home and you don't fully trust where you are...

[-] Grandwolf319@sh.itjust.works 3 points 10 months ago* (last edited 10 months ago)

So I’m pretty averse to getting new apps and giving them location permissions.

Just cause of this comment I went it and looked at the location permissions, holy shit so many apps had it that shouldn’t have. Like Apple home… wtf does it need location for, it uses wifi…

this post was submitted on 18 May 2024

1159 points (98.2% liked)

Curated Tumblr

4794 readers

210 users here now

For preserving the least toxic and most culturally relevant Tumblr heritage posts.

The best transcribed post each week will be pinned and receive a random bitmap of a trophy superimposed with the author's username and a personalized message. Here are some OCR tools to assist you in your endeavors:

web
iOS
FOSS Android Recs per u/m_f@discuss.online: 1 , 2

Don't be mean. I promise to do my best to judge that fairly.

founded 2 years ago

MODERATORS

Apytele@sh.itjust.works

ethaver@kbin.earth