Jump to content
The Dark Mod Forums

Open Source Malware Vector


wanderer

Recommended Posts

As I understand it, the target app was related to Crypto mining so the incentive to infiltrate was much higher

than with other dormant projects.

 

It's good that the alarm bell is being raised anyway.

Please visit TDM's IndieDB site and help promote the mod:

 

http://www.indiedb.com/mods/the-dark-mod

 

(Yeah, shameless promotion... but traffic is traffic folks...)

Link to comment
Share on other sites

one of the benefits of opensource is that everyone can read the code.

And there are some os projects who got and got ridden this problem.

 

But then again,

not everyone is a good coder who can detects this code.

And who is compiling the code,..

Edited by freyk

Info: My portfolio and darkmod graphical installer
Amnesty for Bikerdude!

Link to comment
Share on other sites

Coders using node.js in general seem to really like to pile up a lot of dependencies - while giving a shit about devops security. Looks like shady folks stumbled upon news from 2013.
Another bad practice: Naively downloading and executing Docker images.

It is a bit like the big email worm epidemics - but for naive devs wich search and download the malware instead of naive users wich click on malware mailed to them.

 

Really wonder when we will see the first realworld Meltdown and Spectre exploits though. Does not look like anybody really cares about fixing that holes on millions of old CPUs. And some of that hardware design bugs should be exploitable by tricking a user to run JavaScript embedded on a web page or injected into it by targetted advertising...

Edited by Abusimplea
Link to comment
Share on other sites

there's malware in adverts, you see a lot if you mod minecraft, they use adfly as revenue when downloading a mod, and about 90 percent of adfly adverts are infected, so i use a adblocker, which blocks the malware infected ads, they complain that am stopping them from gaining revenue, but what revenue are they getting from an online ad site that loads there ads with malware.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recent Status Updates

    • Ansome

      Finally got my PC back from the shop after my SSD got corrupted a week ago and damaged my motherboard. Scary stuff, but thank goodness it happened right after two months of FM development instead of wiping all my work before I could release it. New SSD, repaired Motherboard and BIOS, and we're ready to start working on my second FM with some added version control in the cloud just to be safe!
      · 0 replies
    • Petike the Taffer  »  DeTeEff

      I've updated the articles for your FMs and your author category at the wiki. Your newer nickname (DeTeEff) now comes first, and the one in parentheses is your older nickname (Fieldmedic). Just to avoid confusing people who played your FMs years ago and remember your older nickname. I've added a wiki article for your latest FM, Who Watches the Watcher?, as part of my current updating efforts. Unless I overlooked something, you have five different FMs so far.
      · 0 replies
    • Petike the Taffer

      I've finally managed to log in to The Dark Mod Wiki. I'm back in the saddle and before the holidays start in full, I'll be adding a few new FM articles and doing other updates. Written in Stone is already done.
      · 4 replies
    • nbohr1more

      TDM 15th Anniversary Contest is now active! Please declare your participation: https://forums.thedarkmod.com/index.php?/topic/22413-the-dark-mod-15th-anniversary-contest-entry-thread/
       
      · 0 replies
    • JackFarmer

      @TheUnbeholden
      You cannot receive PMs. Could you please be so kind and check your mailbox if it is full (or maybe you switched off the function)?
      · 1 reply
×
×
  • Create New...