IT News<p>Secure Boot-neutering PKfail debacle is more prevalent than anyone knew - Enlarge (credit: Getty Images) </p><p>A supply chain failure that com... - <a href="https://arstechnica.com/?p=2050182" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=2050182</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/platformkeys" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>platformkeys</span></a> <a href="https://schleuss.online/tags/secureboot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secureboot</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/pkfail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pkfail</span></a> <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uefi</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.
Administered by:
Server stats:
256active users
shakedown.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#rootkits
0 posts · 0 participants · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://waldvogel.family/@marcel" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>marcel</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@Kensan" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Kensan</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@adfichter" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>adfichter</span></a></span> die einzig wirksame <a href="https://infosec.space/tags/Konsequenz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Konsequenz</span></a> ist, sich konsequent entsprechender <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a> als <a href="https://infosec.space/tags/Betriebssystem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Betriebssystem</span></a> zu verweigern und keine <a href="https://infosec.space/tags/Scareware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scareware</span></a> mit <a href="https://infosec.space/tags/Rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rootkits</span></a> zu nutzen!</p><ul><li>Die <a href="https://infosec.space/tags/Sicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sicherheit</span></a> sollte im Zweifelsfalle durch den <a href="https://infosec.space/tags/Maintainer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Maintainer</span></a> des Betriebssystems / der Distribution bereitgestellt und verifizierbar sein, und wenn jene*r keine Haftung dafür anbietet so ist diese dafür zu disqualifizieren.</li></ul><p>So einfach ist das!</p>
Steven Saus [he/him]<p>From 25 Jul: Secure Boot is completely broken on 200+ models from 5 big device makers - Enlargesasha85ru Getty Imates In 2012, an industry-wide coalition of hardware... <a href="https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">arstechnica.com/security/2024/</span><span class="invisible">07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/</span></a> <a href="https://faithcollapsing.com/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a>-&-it <a href="https://faithcollapsing.com/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cryptography</span></a> <a href="https://faithcollapsing.com/tags/features" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>features</span></a> <a href="https://faithcollapsing.com/tags/key" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>key</span></a>-compromise <a href="https://faithcollapsing.com/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://faithcollapsing.com/tags/secure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secure</span></a>-boot <a href="https://faithcollapsing.com/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://faithcollapsing.com/tags/supply" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>supply</span></a>-chain <a href="https://faithcollapsing.com/tags/uefi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uefi</span></a> <a href="https://faithcollapsing.com/tags/unified" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>unified</span></a>-extensible-firmware-interface</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://geeknews.chat/@theregister" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>theregister</span></a></span> that's not enough!</p><p><a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> must <a href="https://infosec.space/tags/ban" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ban</span></a> <a href="https://infosec.space/tags/Rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rootkits</span></a> / <a href="https://infosec.space/tags/Bootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bootkits</span></a> and <a href="https://infosec.space/tags/Lernel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Lernel</span></a>-level <a href="https://infosec.space/tags/drivers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>drivers</span></a> entirely or <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> will get banned amidst it's unfixable security!</p>
IT News<p>Secure Boot is completely broken on 200+ models from 5 big device makers - Enlarge (credit: sasha85ru | Getty Imates) </p><p>In 2012, an industr... - <a href="https://arstechnica.com/?p=2039140" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=2039140</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/unifiedextensiblefirmwareinterface" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>unifiedextensiblefirmwareinterface</span></a> <a href="https://schleuss.online/tags/keycompromise" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keycompromise</span></a> <a href="https://schleuss.online/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cryptography</span></a> <a href="https://schleuss.online/tags/supplychain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>supplychain</span></a> <a href="https://schleuss.online/tags/secureboot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secureboot</span></a> <a href="https://schleuss.online/tags/features" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>features</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>uefi</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@Cappyjax" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Cappyjax</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.radio/@WB2EEE" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>WB2EEE</span></a></span> <span class="h-card" translate="no"><a href="https://zug.network/@Zugschlus" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Zugschlus</span></a></span> <span class="h-card" translate="no"><a href="https://donotsta.re/users/elly" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>elly</span></a></span> </p><p>I disagree with <a href="https://mastodon.social/@Cappyjax/112821333101353573" rel="nofollow noopener noreferrer" target="_blank">your assessment</a> to some extent, as on <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> there's not much of a tolerace or even acceptance of <a href="https://infosec.space/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> like <a href="https://infosec.space/tags/CorwdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CorwdStrike</span></a> for all the right reasons!</p><ul><li><a href="https://infosec.space/tags/Scareware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scareware</span></a> like that has <em>no legitimate reason to exist</em> and the only place I've seen that is on <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows</span></a> because people distrusting <a href="https://infosec.space/tags/WindowsDefender" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WindowsDefender</span></a> and thus <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> are unwilling to to what is <em>evidently the correct solution</em> and yeet Windows for good.</li></ul><p>Cuz it's not about <a href="https://infosec.space/tags/Fanboyism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fanboyism</span></a>, but a fact that most Windows - <a href="https://infosec.space/tags/Sysadmins" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Sysadmins</span></a> (or rather decisionmakers for that matter) seem to be high on <a href="https://infosec.space/tags/Copium" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Copium</span></a> and refuse to take actual <a href="https://infosec.space/tags/consequences" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>consequences</span></a> but accept the <a href="https://infosec.space/tags/Enshittification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Enshittification</span></a> as a fact of life when it's not...</p><ul><li>Or am I the only one who remembers the rightful backclash when <a href="https://infosec.space/tags/ads" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ads</span></a> were shoved into <a href="https://infosec.space/tags/Ubuntu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ubuntu</span></a> whilst on <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows11</span></a> and <a href="https://infosec.space/tags/Windows10" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows10</span></a> people just seem to shrug their shoulders?</li></ul><p>It's just that this entire shitshow would not have happened on <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> because here we don't have an entire ecosystem of <a href="https://infosec.space/tags/ValueRemoving" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ValueRemoving</span></a> <em>"<a href="https://infosec.space/tags/AntiVirus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AntiVirus</span></a>"</em> bs being shoved on Desktops and Servers in the form of <a href="https://infosec.space/tags/Binaryblob" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Binaryblob</span></a> <a href="https://infosec.space/tags/Kernelhacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Kernelhacks</span></a>!</p>
IT News<p>Stealthy Linux rootkit found in the wild after going undetected for 2 years - Enlarge </p><p>Stealthy and multifunctional Linux malware that has b... - <a href="https://arstechnica.com/?p=1989775" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1989775</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/backdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>backdoor</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a></p>
IT News<p>Vulnerabilities in Supermicro BMCs could allow for unkillable server rootkits - Enlarge (credit: Getty Images) </p><p>If your organization uses serve... - <a href="https://arstechnica.com/?p=1973415" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1973415</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/baseboardmanagementcontrollers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>baseboardmanagementcontrollers</span></a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vulnerabilities</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/firmware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firmware</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/bmcs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bmcs</span></a></p>
IT News<p>Microsoft signing keys keep getting hijacked, to the delight of Chinese threat actors - Enlarge (credit: Getty Images) </p><p>In July, security researchers r... - <a href="https://arstechnica.com/?p=1963184" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1963184</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/digigalcertificate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>digigalcertificate</span></a> <a href="https://schleuss.online/tags/microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>microsoft</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/drivers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>drivers</span></a> <a href="https://schleuss.online/tags/windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>windows</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a>&it</p>
IT News<p>Millions of PC motherboards were sold with a firmware backdoor - Enlarge (credit: BeeBright/Getty Images) </p><p>Hiding malicious prog... - <a href="https://arstechnica.com/?p=1943487" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=1943487</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/motherboards" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>motherboards</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/firmware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>firmware</span></a> <a href="https://schleuss.online/tags/gigabyte" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gigabyte</span></a> <a href="https://schleuss.online/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a></p>
13reak :fedora:<p><a href="https://infosec.exchange/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>introduction</span></a> </p><p>Hi,</p><p>I am an <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>infosec</span></a> enthusiast interested in <a href="https://infosec.exchange/tags/dfir" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>dfir</span></a> <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>incidentresponse</span></a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> <a href="https://infosec.exchange/tags/rootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rootkits</span></a> <a href="https://infosec.exchange/tags/velociraptor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>velociraptor</span></a> <a href="https://infosec.exchange/tags/reversing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>reversing</span></a> and a bit <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pentesting</span></a> / <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>purpleteam</span></a> (yeah, bit more on the <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blueteam</span></a> side... 😅 )</p><p>Programming wise <a href="https://infosec.exchange/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a> <a href="https://infosec.exchange/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>python</span></a> <a href="https://infosec.exchange/tags/rust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rust</span></a> <a href="https://infosec.exchange/tags/golang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>golang</span></a></p><p>Apart from that I can always talk about <a href="https://infosec.exchange/tags/rock" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rock</span></a> and <a href="https://infosec.exchange/tags/metal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>metal</span></a> 😀 🤘 </p><p>Looking forward to connect to people on these topics - feel free to PM me 🙂</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload