Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Comment Re:Brought it on themselves (Score 3, Insightful) 67

I hope that Apple changes the iOS App Store approval process to look for this insanely-dangerous BACKDOOR, and make the inclusion of that cause for instant REJECTION of the App.

I'm curious when exactly they changed their policy in the first place. Apple used to reject any application that tried to do anything like this.

Comment Re:Victims should sue (Score 1) 100

And a fsckin security researcher to boot. I don't get it - What kind of secure world does he live in where you publish - and therefore do the legwork - for the very people you are supposed to be securing against?

Maybe the various AV companies can sue him for infringement of their methods patent on this.

Comment Re:I care not. (Score 1) 302

I am a Netflix user. I could give a crap about what CBS/NBC/ABC have to offer...Netflix will have it eventually

Which means you do give a crap, or at least you should. For all that Netflix is, it doesn't actually produce a whole lot of content. It makes content produced by others available to you. If those other content producers go away and Netflix becomes the sole creator and provider, what happens then?

Comment Re:after reading the details, this is significant (Score 1) 146

Unless the user has 2FA enabled.....

From TFA:

Attacker can intercept 2FA codes

Additionally, the attacker can even check these credentials against the LastPass API, verify their accuracy, and even ask the user for the two-factor authentication code if this feature is turned on.

If everything is correct, and all the codes verify through, using the same LastPass API, an attacker can collect any data from the user's account he wants, including the password vault.

Comment The Developer of Lucky7Coin... (Score 4, Informative) 90

It was not the developer of Lucky7Coin that introduced this backdoor, or at least not the original developer. The heart of this attack was a social engineering. Lucky7Coin support had been abandoned. Someone else came along, claiming that they were taking over support for this particular altcoin. They even created a new github repo for it. As part of the initial commit though they introduced a backdoor. Cryptsy picked up the new version of the code and the rest is history.

Comment But Of Course (Score 1) 169

What sets this case apart is that the accused IRS employee, Nakeisha Hall, was tasked specifically with helping people who had been affected by some kind of tax-related identity theft or fraud.

Of course this would be the way to do it. Any losses that Nakeisha generated could be attributed to the fraud that the taxpayer was already suffering. Probably masked the losses quite nicely, at least for a time.

Slashdot Top Deals

New systems generate new problems.

Working...