Queue@lemmy.blahaj.zone to Technology@lemmy.worldEnglish · edit-24 months agoUkraine says hackers abuse SyncThing tool to steal datawww.bleepingcomputer.comexternal-linkmessage-square27fedilinkarrow-up1156arrow-down127
arrow-up1129arrow-down1external-linkUkraine says hackers abuse SyncThing tool to steal datawww.bleepingcomputer.comQueue@lemmy.blahaj.zone to Technology@lemmy.worldEnglish · edit-24 months agomessage-square27fedilink
minus-squarespaghettiwestern@sh.itjust.workslinkfedilinkEnglisharrow-up100·4 months agoCorrect me if I’m wrong, but this doesn’t look like this has anything to do with Syncthing vulnerabilities. Instead it looks like a hack that uses a preconfigured Syncthing installation to transfer sensitive data. Disturbing nonetheless.
minus-squarejust_another_person@lemmy.worldlinkfedilinkEnglisharrow-up73arrow-down1·4 months agoIt’s a Phishing scam using a tool. It’s no more exploiting SyncThing than TCP/IP.
minus-squareHolzkohlen@feddit.delinkfedilinkEnglisharrow-up12·4 months agoBet they also utilize electricity these bastards! What’s next? Physics? Oh the humanity!
minus-squarelaurelraven@lemmy.blahaj.zonelinkfedilinkEnglisharrow-up3·4 months agoIts physics all the way down
minus-squareblackbarn@lemm.eelinkfedilinkEnglisharrow-up10·4 months agoJust like using a remote desktop tool in a scam I suppose
minus-squaretreadful@lemmy.ziplinkfedilinkEnglisharrow-up6arrow-down1·4 months agoLooks like a specially modified SyncThing was just used for exfil.
minus-squareDeebster@programming.devlinkfedilinkEnglisharrow-up18·4 months agoThe article uses the word modified, but it sounds like it’s just talking about configuring it and using it as normal.
Correct me if I’m wrong, but this doesn’t look like this has anything to do with Syncthing vulnerabilities. Instead it looks like a hack that uses a preconfigured Syncthing installation to transfer sensitive data. Disturbing nonetheless.
It’s a Phishing scam using a tool. It’s no more exploiting SyncThing than TCP/IP.
Bet they also utilize electricity these bastards! What’s next? Physics? Oh the humanity!
Its physics all the way down
Relevant xkcd
Relevant edited xkcd
Just like using a remote desktop tool in a scam I suppose
Looks like a specially modified SyncThing was just used for exfil.
The article uses the word modified, but it sounds like it’s just talking about configuring it and using it as normal.
Indeed.