|
it was an issue in lots of places across the us today
|
#
?
Nov 7, 2017 03:17
|
|
|
|
| # ? May 15, 2024 05:11 |
|
|
Ciaphas posted:I like the "facebook and twitter are incestuous hitlerholes that need to be burned to the ground and salted ASAP and never ever replaced" hill myself, i'd die on that In my experience at least half of software devs hate facebook. In society as a whole that number is a lot smaller, but still it has been growing.
|
|
#
?
Nov 7, 2017 07:37
|
|
|
http://www.tomshardware.com/news/mantistek-gk2-collects-typed-keys,35850.html MantisTek GK2 mechanical keyboard driver has a keylogger who is MantisTek? some cheap chinese gadget manufacturer.
|
|
#
?
Nov 7, 2017 12:19
|
|
|
lol at that article title though. with brands like lenovo shipping bad spyware you're never safe.
|
|
#
?
Nov 7, 2017 12:22
|
|
|
At this point, if your network touchers haven't broken the entire internet with a bad bgp push, I'd check to make sure they're actually doing any work and not just playing dota in their cat5 lined nest all day.
|
|
#
?
Nov 7, 2017 13:19
|
|
|
I would rather my network touchers do that than try to do any real work
|
|
#
?
Nov 7, 2017 13:34
|
|
|
https://paritytech.io/blog/security-alert.html someone quote:It would seem that issue was triggered accidentally 6th Nov 2017 02:33:47 PM +UTC and subsequently a user suicided the library-turned-into-wallet, wiping out the library code which in turn rendered all multi-sig contracts unusable since their logic (any state-modifying function) was inside the library. Issue thread: https://github.com/paritytech/parity/issues/6995 There are a large amount of previously-stuffed wallets that are a nice 0 ETH in balance right now. Oh, and here's the guy who did it:  e: The figures floating around for impact are between $150m-270m lol bicycle fucked around with this message at 15:21 on Nov 7, 2017 |
|
#
?
Nov 7, 2017 15:09
|
|
|
bicycle posted:https://paritytech.io/blog/security-alert.html hahahahahaha
|
|
#
?
Nov 7, 2017 15:20
|
|
|
bicycle posted:https://paritytech.io/blog/security-alert.html This is the future they want.
|
|
#
?
Nov 7, 2017 15:24
|
|
|
no really guys cryptobucks are the future
|
|
#
?
Nov 7, 2017 15:25
|
|
|
BUTT COIN
|
|
#
?
Nov 7, 2017 15:47
|
|
|
i'm the "added F1-security M8-contracts P0-dropeverything and removed F3-annoyance Z5-unconfirmed labels"
|
|
#
?
Nov 7, 2017 15:50
|
|
|
u-wot-M8?
|
|
#
?
Nov 7, 2017 16:35
|
|
|
bicycle posted:https://paritytech.io/blog/security-alert.html nerds rapidly discover why smart contracts are not good
|
|
#
?
Nov 7, 2017 16:36
|
|
|
but my special flavour of a blockchain and open contracts are the fut... no
|
|
#
?
Nov 7, 2017 16:38
|
|
|
this contract doesn't seem very smart at all!
|
|
#
?
Nov 7, 2017 16:38
|
|
|
Truga posted:lol at that article title though. with brands like lenovo shipping bad spyware you're never safe. when i see lenovo i think cheap chinese crap
|
|
#
?
Nov 7, 2017 16:47
|
|
|
but then there's thinkpads which are passable? those are lenovo too.
|
|
#
?
Nov 7, 2017 16:52
|
|
|
Truga posted:but then there's thinkpads which are passable? those are lenovo too. lenovo thinkpads are bad.
|
|
#
?
Nov 7, 2017 17:29
|
|
|
more like stinkpad!!!!!
|
|
#
?
Nov 7, 2017 17:31
|
|
|
bicycle posted:https://paritytech.io/blog/security-alert.html so let me get this straight an important library critical to some aspect of program or contract functionality was exposed to the contract system in such a way that it was possible to convert the library itself into a smart contract this guy did that, then sent a delete command to that contract, causing the entire network to delete that library from loving everything and it can't be undone, because the command to undo the delete depended on the library that's been deleted CURRENCY OF THE FUTURE
|
|
#
?
Nov 7, 2017 17:53
|
|
|
there are two possible things it was a malicious attempt and the guy is pulling off the e-coin troll of the decade or the guy accidentally rm'd $150m+ internet coins I really can't decide which is funnier
|
|
#
?
Nov 7, 2017 17:58
|
|
|
it's bitcoin, you know it's incompetence rather than malice
|
|
#
?
Nov 7, 2017 17:59
|
|
|
bicycle posted:there are two possible things the accident is way funnier
|
|
#
?
Nov 7, 2017 17:59
|
|
|
the accident is way funnier because it was other people's coins
|
|
#
?
Nov 7, 2017 18:03
|
|
|
that guy owns
|
|
#
?
Nov 7, 2017 18:26
|
|
|
yeah i legit love this guy for being so adorably incompetent and oblivious, it's magical like watching mr. bean accidentally set fire to a giant pile of money
|
|
#
?
Nov 7, 2017 18:33
|
|
|
BangersInMyKnickers posted:that guy owns
|
|
#
?
Nov 7, 2017 18:42
|
|
|
Security Fuckup Megathread - v14.1 - i'm eth newbie..just learning
|
|
#
?
Nov 7, 2017 18:42
|
|
|
stay safe noob ghost i'd personally avoid any chinese or russians 
|
|
#
?
Nov 7, 2017 18:44
|
|
|
mrmcd posted:At this point, if your network touchers haven't broken the entire internet with a bad bgp push, I'd check to make sure they're actually doing any work and not just playing dota in their cat5 lined nest all day. We sent some BGP Communities to AT&T to accept our prefixes, but not advertise them to anyone else and so ATT did the logical thing and blackholed all traffic heading for our network by removing our prefix from their routing table. It was pretty cool.
|
|
#
?
Nov 7, 2017 19:15
|
|
|
Security Fuckup Megathread - v14.1 - I accidentally killed it.
|
|
#
?
Nov 7, 2017 19:17
|
|
|
 ' life comes at you fast
|
|
#
?
Nov 7, 2017 19:23
|
|
|
BattleMaster posted:
Security Fuckup Megathread - v14.2 - added P0-dropeverything and removed F3-annoyance
|
|
#
?
Nov 7, 2017 20:56
|
|
|
welp. a fairly high value investment firm i work for just got popped by one of those credential harvesting phishing messages, sent seemingly legitimately from another investment firm they work with, who evidently had their office 365 accounts breached some time ago and were unaware of it until now.
|
|
#
?
Nov 7, 2017 22:20
|
|
|
Pikavangelist posted:Security Fuckup Megathread - v14.2 - added P0-dropeverything and removed F3-annoyance
|
|
#
?
Nov 7, 2017 22:44
|
|
|
Pikavangelist posted:Security Fuckup Megathread - v14.2 - added P0-dropeverything and removed F3-annoyance
|
|
#
?
Nov 7, 2017 22:45
|
|
|
Pikavangelist posted:Security Fuckup Megathread - v14.2 - added P0-dropeverything and removed F3-annoyance
|
|
#
?
Nov 7, 2017 23:17
|
|
|
infernal machines posted:welp. a fairly high value investment firm i work for just got popped by one of those credential harvesting phishing messages, sent seemingly legitimately from another investment firm they work with, who evidently had their office 365 accounts breached some time ago and were unaware of it until now. any additional details you can share? we love to send stories about this kind of stuff happening out as company-wide broadcasts to reinforce our "DON'T TRUST EMAIL" campaign i understand if you can't though
|
|
#
?
Nov 7, 2017 23:18
|
|
|
|
| # ? May 15, 2024 05:11 |
|
|
We have been having a rash of those with popped accounts at [EDU] Only thing I noted is as they slowly roll in so far the user names being used seem to be coming in alphabetical order
|
|
#
?
Nov 7, 2017 23:55
|
|
