Results 1 to 7 of 7
  1. #1
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default Hackers Hijacked ASUS Software Updates to Install Backdoors on Thousands of Computers

    FWIW! Great, malware only looking for 'specific systems' by MAC address... OMG, the IoT's is going to be so much fun, I just know it! Smells of a State actor, no? #DOOM

    "The malware searched for targeted systems through their unique MAC addresses."
    https://motherboard.vice.com/en_us/a...s-of-computers
    Last edited by f1assistance; 03-28-2019 at 03:26 PM.
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  2. #2
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default

    D'oh! The more I think about this idea of targeting a publicly known OUI, the louder the alarms sound off. This clearly a next level attack by orders of magnitude and not simply a spray and pray infringement. I was a little hopeful with IPv6 and an obvious security through obscurity, but now I realize I wasn't looking at the whole addressing scheme...
    I understand the simple math with these large numbers doesn't work (i.e., 2^48 can't match 2^128) and wonder of the NG OUI or what I'm missing?

    "MAC address"
    https://infogalactic.com/info/MAC_address
    "Organizationally unique identifier"
    https://infogalactic.com/info/Organi...que_identifier
    "Qualcomm Announces X55 Modem: 5G Multi-mode & New Advanced ICs"
    https://www.anandtech.com/show/13966...nces-x55-modem
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  3. #3
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default

    I knew of this, but didn't appreciate the idea much until now...clearly the cat's out of the bag. #DOOM

    "Spying agencies tracking your location by capturing MAC address of your devices"
    https://thehackernews.com/2014/01/sp...cation_31.html
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  4. #4
    Master Untangler Kyawa's Avatar
    Join Date
    Dec 2016
    Location
    Maryland
    Posts
    406

    Default

    You can check your MAC address here: https://shadowhammer.kaspersky.com/

  5. #5
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default

    We're only now beginning to publicly realize the negative ramifications of the States release of Stuxnet and how it excited imaginations around the world to think outside their current box of surveillance/assault tricks. D'oh!
    Last edited by f1assistance; 03-29-2019 at 08:51 AM.
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  6. #6
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default

    "MAC Addresses Targeted by the ASUS Supply Chain Attack Now Available"
    https://www.bleepingcomputer.com/new...now-available/
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  7. #7
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    946

    Default

    Quote Originally Posted by f1assistance View Post
    We're only now beginning to publicly realize the negative ramifications of the States release of Stuxnet and how it excited imaginations around the world to think outside their current box of surveillance/assault tricks. D'oh!
    "SAS 2019: 4 Stuxnet-Related APTs Form Gossip Girl, an ‘Apex Threat Actor’"
    https://threatpost.com/stuxnet-apts-gossip-girl/143595/
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2