this post was submitted on 10 Feb 2024
121 points (97.6% liked)

Technology

34906 readers
297 users here now

This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.


Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.


Rules:

1: All Lemmy rules apply

2: Do not post low effort posts

3: NEVER post naziped*gore stuff

4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.

5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)

6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist

7: crypto related posts, unless essential, are disallowed

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 39 points 9 months ago (2 children)

Can't wait until this spurs the security community into doing a deep look at the roms on these cheap Chinese boards. Yeah the malware was caught - but what's more important is the intent. This is a country that is constantly behind breaches and botnets... and here we have these PCs being marketed as router replacents and mini servers. It doesn't take much to figure out that this is free back door territory.

[–] [email protected] 9 points 9 months ago (1 children)

Yes! I've been telling this to friends who keep buying Chinese boards to use as routers and NAS ... wth

[–] [email protected] 3 points 9 months ago

I mean depending on what board you’re using it’s unlikely it’s hardware level snooping that supersedes changing the firmware. Especially if you stick to those that run on open source firmware.

[–] [email protected] 9 points 9 months ago* (last edited 9 months ago) (1 children)

but what’s more important is the intent

Afaik, the problem was a trojan inside the cracked windows images they used to avoid paying for windows keys. I doubt the intent was to create a botnet, it seems more like generic cybercrime.

I personally always wipe the preinstalled OS to avoid issues like this. However, make sure to use a clean image directly from the source. Simply reinstalling from within Windows wouldn't have helped in this case, because the malware was part of the recovery files.

The story originated from a video from the "The Net Guy Reviews" YouTube channel. Most articles I've seen so far oversimplify the issue and/or get facts wrong, therefore I recommend checking out the original video if you want to learn more.

[–] [email protected] 5 points 9 months ago

Yeah malware is everywhere - This could simply be a product of an individual actor abusing their position in a supply chain.... but this also goes for hardware as well. It is certainly a more difficult vector to attack from but due to its 'level' it's a valuable position to compromise.