|
lol
|
# ? Jun 4, 2019 17:11 |
|
|
# ? Mar 28, 2024 11:01 |
|
Let the files be free. If they never come back then they were never really yours.
|
# ? Jun 4, 2019 17:40 |
|
Jabor posted:i mean, notepad does do text layout (break into lines, tab spacing, etc.), and unicode that and microsofts recent updating of it (broader encoding support, different line ending support, long path support, etc.) has indeed replaced a lot of that plumbing. so he is most likely teasing a bug in the newer versions of the components notepad uses.
|
# ? Jun 4, 2019 18:33 |
|
yeah, i had assumed it was probably w10-related encoding support or something
|
# ? Jun 4, 2019 19:33 |
|
He did say it was a memory corruption thing, but won't be anymore specific until the patch is released or 90 days pass.
|
# ? Jun 4, 2019 20:12 |
|
Is this new? https://mdsattacks.com/ Errr the youtube videos are from May so I guess not, nevermind zzzzzz AMD stock should be doing good
|
# ? Jun 4, 2019 21:17 |
|
Wiggly Wayne DDS posted:good thread to read in the morning: lol sick
|
# ? Jun 4, 2019 21:32 |
|
Proteus Jones posted:He did say it was a memory corruption thing, but won't be anymore specific until the patch is released or 90 days pass. I mean 90% of arbitrary code execution can be classified as "memory corruption"
|
# ? Jun 4, 2019 21:40 |
|
Cool the neatest tech thing i ever found at a thrift store was a metal cased thing with a bunch of strange ports on the back and some USB ports. normally i wouldnt care but i noticed the front usb port was marked "USB Sniffer", so i bought it for a dollar anyway disappointingly it turned out to be some sort of security camera thing that would overlay data from the usb onto the video feed, so like, an access controlled door could overlay the name of the person using the access card onto the video also i got a hauppauge hd pvr 2 for 3 dollars today at goodwill so eh
|
# ? Jun 5, 2019 03:36 |
|
stealin dis
|
# ? Jun 5, 2019 03:41 |
|
A friend of mine bought a used HP laptop off eBay, and wants to make sure it's not carrying something unpleasant deep inside. HP recommends "HP Reset", but I'm not au courant enough on the used-PC threat model to know if that is sufficient or a secfuck waiting to happen. Please help me pretend I know what I'm talking about when I reply to my friend!
|
# ? Jun 5, 2019 15:19 |
|
I'd reinstall from USB to get rid of the hp poo poo and also swap the drive to cover the very unlikely event there is some latent malware on the drive as well as the very likely scenario he will want something bigger and faster as storage is always getting cheaper.
|
# ? Jun 5, 2019 15:24 |
|
Winkle-Daddy posted:I'd reinstall from USB to get rid of the hp poo poo and also swap the drive to cover the very unlikely event there is some latent malware on the drive as well as the very likely scenario he will want something bigger and faster as storage is always getting cheaper. what fud is this, "latent malware" if you flatten and reinstall?
|
# ? Jun 5, 2019 15:28 |
|
make sure computrace or anything like it is disabled
|
# ? Jun 5, 2019 15:37 |
|
Tankakern posted:what fud is this, "latent malware" if you flatten and reinstall? I don't know how common they are, but there are rootkits that install themselves into hard disk firmware so they aren't erased by a reformat
|
# ? Jun 5, 2019 15:42 |
|
Tankakern posted:what fud is this, "latent malware" if you flatten and reinstall? I remember some stuff being posted here about certain laptop manufacturers hiding code in hidden partitions that would reinstall their poo poo even if you completely formatted the drive and reinstalled windows from a clean media install. Edit: https://www.extremetech.com/computing/212074-lenovo-laptops-can-reinstall-bundled-crapware-even-if-you-load-a-retail-copy-of-windows Of course it was Lenovo, although in theory this just affected Windows 7 and 8. dpkg chopra fucked around with this message at 15:50 on Jun 5, 2019 |
# ? Jun 5, 2019 15:47 |
|
lets not forget persistant malware in your bios that exfiltrates data through microwaves or morse code or something
|
# ? Jun 5, 2019 15:51 |
|
power botton posted:lets not forget persistant malware in your bios that exfiltrates data through microwaves or morse code or something
|
# ? Jun 5, 2019 15:53 |
|
Ur Getting Fatter posted:I remember some stuff being posted here about certain laptop manufacturers hiding code in hidden partitions that would reinstall their poo poo even if you completely formatted the drive and reinstalled windows from a clean media install. that was in efi, so replacing the hard drive wouldn't prevent it from pushing the app back into the install
|
# ? Jun 5, 2019 15:54 |
|
Tankakern posted:what fud is this, "latent malware" if you flatten and reinstall? there's some lovely tricks the oems were using where crapware installers were packaged in the uefi and then the windows installer would slipstream those in at install time due to some behavior in the OS installer being abused but I think MS cracked down on those now
|
# ? Jun 5, 2019 15:55 |
|
Sagebrush posted:I don't know how common they are, but there are rootkits that install themselves into hard disk firmware so they aren't erased by a reformat those are defeated by secureboot unless the hardware is also compromised
|
# ? Jun 5, 2019 15:55 |
|
yeah, in principle there can be malware in the uefi firmware or bios, but as the only way to fix that is to toss the laptop and not get a new one (as the new one may have it too) it is not very helpful info. ideally do a full format and reinstall, but whatever reset-to-factory-image is offered up by hp is *probably* sufficient. there is a lot of stuff malware *could* do to be incredibly well-hidden and persistent, but as the actual reformat is such a rare event in the life of a piece of consumer-grade malware i don't think many bother to try very hard.
|
# ? Jun 5, 2019 15:56 |
|
I mean, if it's the manufacturer whether it was bought off eBay or not shouldn't matter. New hard drive and reinstall is sufficient for an average non-paranoid non-computer toucher. Asking for advice in this thread though on how to secure your used hp eBay laptop though? Lol. Shoulda bought an abacus and cut the electricity to the house because your friend's first mistake was being on the internet. HTH
|
# ? Jun 5, 2019 15:59 |
|
assuming you can disable vpro/amt and any other remote asset management stuff in the bios then a wipe and reinstall from USB media should be good enough
|
# ? Jun 5, 2019 16:19 |
|
El Mero Mero posted:your friend's first mistake was being on the internet. HTH honestly this was humanity's first mistake tbh
|
# ? Jun 5, 2019 16:21 |
|
BangersInMyKnickers posted:there's some lovely tricks the oems were using where crapware installers were packaged in the uefi and then the windows installer would slipstream those in at install time due to some behavior in the OS installer being abused but I think MS cracked down on those now why would they crack down on it, it's working as intended those things are called "drivers" and they're 600MB because they're full of important driver things, honest
|
# ? Jun 5, 2019 16:26 |
|
look it just has ads because people like them and told us how much they would miss them if they're gone, why do you all hate adding value and improving the user experience you hitlers
|
# ? Jun 5, 2019 16:29 |
|
while the general thrust of this argument is true microsoft did in fact crack down on the use of this uefi hook for loading software
|
# ? Jun 5, 2019 17:09 |
|
if your really worried install linux on it
|
# ? Jun 5, 2019 17:21 |
|
Tankakern posted:if your really worried install linux on it
|
# ? Jun 5, 2019 17:22 |
|
besides, the nsa already lives in your intel me install.
|
# ? Jun 5, 2019 17:24 |
|
in eye-rolling stupid poo poo news that you'll have to deal with from vuln tester dipshits, qualys is now marking non-GCM ciphers as "weak" so have fun dealing with that bullshit
|
# ? Jun 5, 2019 17:24 |
|
Tankakern posted:what fud is this, "latent malware" if you flatten and reinstall? You spelled common knowledge wrong? NSA has been installing malware into HD firmware since at least 2001, and did it for 14 years undetected until that whole Kaspersky thing on equation group malware back in '15. e: I mean, it's really rare, but HDs are cheap, just get a new one and re-install from USB. If your threat model requires you to be any more paranoid, don't buy used, I guess? e2: a link https://www.kaspersky.com/blog/equation-hdd-malware/7623/
|
# ? Jun 5, 2019 17:25 |
|
i originally found thompsons 'trusting trust' talk (you know the ones, the impossibility of figuring out a backdoor inserted by a compiler by source inspection), but it comes up pretty often in this kind of conversation: yeah, no poo poo, you can't trust anything. your intel-based laptop comes with three operating systems installed, and you can only have an effect on the one that is least trusted and loads last.
|
# ? Jun 5, 2019 17:28 |
|
Thanks, folks. He's thinking about getting a new nvme whatsit for it anyway to increase the storage, so I'll just encourage him in that direction.Ur Getting Fatter posted:Of course it was Lenovo, although in theory this just affected Windows 7 and 8. Serious Hardware / Software Crap > YOSPOS > Security Fuckup Megathread v18.2 - of course it was Lenovo
|
# ? Jun 5, 2019 18:22 |
|
Subjunctive posted:Serious Hardware / Software Crap > YOSPOS > Security Fuckup Megathread v18.2 - of course it was Lenovo
|
# ? Jun 5, 2019 18:27 |
|
Subjunctive posted:Serious Hardware / Software Crap > YOSPOS > Security Fuckup Megathread v18.2 - of course it was Lenovo
|
# ? Jun 5, 2019 18:36 |
|
Subjunctive posted:Serious Hardware / Software Crap > YOSPOS > Security Fuckup Megathread v18.2 - of course it was Lenovo
|
# ? Jun 5, 2019 19:13 |
|
lolnovo
|
# ? Jun 5, 2019 19:20 |
|
|
# ? Mar 28, 2024 11:01 |
|
Subjunctive posted:Serious Hardware / Software Crap > YOSPOS > Security Fuckup Megathread v18.2 - of course it was Lenovo
|
# ? Jun 5, 2019 19:28 |