Hacker News: steffanA

New comment by steffanA in "Google suffers data breach in ongoing Salesforce data theft attacks"

steffanA — Fri, 08 Aug 2025 03:49:26 +0000

Same campaign

New comment by steffanA in "Cheap rj45 ethernet to USB adapter contains malware"

steffanA — Tue, 14 Jan 2025 20:19:13 +0000

The autorun.inf would be in the flash drive, not the executable they uploaded to Any.Run. Were any pics of the flash drive contents shared?

New comment by steffanA in "Internet Archive breached again through stolen access tokens"

steffanA — Mon, 21 Oct 2024 13:21:08 +0000

Nothing sophisticated about this attack.

New comment by steffanA in "Internet Archive breached again through stolen access tokens"

steffanA — Mon, 21 Oct 2024 13:20:23 +0000

The people who DDoSed Internet Archive never claimed to be behind the breach. That was some media companies who misreported this.

The breach happened over a week before the DDoS attack, according to Troy Hunt.

Stop looking for conspiracy theories.

New comment by steffanA in "Internet Archive breached again through stolen access tokens"

steffanA — Sun, 20 Oct 2024 15:39:48 +0000

Article says API token was stolen in original breach.

New comment by steffanA in "Internet Archive: Security breach alert"

steffanA — Thu, 10 Oct 2024 15:26:59 +0000

This is bad enough. This alone is a privacy bug/data leak.

Theoretically, someone could scrape the pages and compile a list of exposed email addresses.

New comment by steffanA in "Internet Archive: Security breach alert"

steffanA — Wed, 09 Oct 2024 23:34:23 +0000

There is a strange dynamic between the threat actors who conduct these breaches and researchers.

When not used for extortion and for "status" in the hacking community, they share them with researchers (commonly HIBP) to warn people about a site's security and so that site is forced to fix things.

Definitely a strange dynamic.

New comment by steffanA in "Internet Archive: Security breach alert"

steffanA — Wed, 09 Oct 2024 22:53:39 +0000

More details here about the data breach. Stolen database contains 31 million records.

https://www.bleepingcomputer.com/news/security/internet-arch...

New comment by steffanA in "New Windows driver blocks software from changing default web browser"

steffanA — Mon, 08 Apr 2024 20:18:38 +0000

It's doubtful to me that this is due to malware.

Many malware hijack search settings. However, very few hijack default browsers themselves these days. In the past (10 years ago) it was much more common.

Furthermore, I don't know of many malware that touch the .PDF file extension associations, and there are plenty of other associations that would be better to hijack.

Feels more like a sloppy fix to comply with EU's DMA.

New comment by steffanA in "New Windows driver blocks software from changing default web browser"

steffanA — Mon, 08 Apr 2024 20:15:01 +0000

Including Firefox who previously bypassed it:

https://www.theverge.com/2021/9/13/22671182/mozilla-default-...

New comment by steffanA in "I asked ChatGPT to summarize 14501 books in 5 bullet points. Here's the result"

steffanA — Mon, 26 Feb 2024 18:52:37 +0000

So you bought and fed 14,500 books into the AI to make these summaries?

New comment by steffanA in "Microsoft Will Eventually Start Charging You for Windows 10 Security Updates"

steffanA — Wed, 06 Dec 2023 18:33:54 +0000

Title is clickbait. I am sure the content of the article clears it up, but the title implies Microsoft is forcing all users to pay for normal security updates.

In reality, it's your choice to stay on an end-of-support OS and purchase updates if you wish to remain secure.

New comment by steffanA in "Microsoft Will Eventually Start Charging You for Windows 10 Security Updates"

steffanA — Wed, 06 Dec 2023 17:33:17 +0000

Because the title makes it sounds like Microsoft will charge for any security update in the future.

These are for end of life products and it is very common for companies to require additional support contracts to keep supporting them.

You do not have to continue using said version of Windows, upgrades are now essentially free, and as long as you are on a supported version of Windows, you will continue to get free security updates.

New comment by steffanA in "Microsoft Will Eventually Start Charging You for Windows 10 Security Updates"

steffanA — Wed, 06 Dec 2023 17:22:06 +0000

Such BS clickbait. This article should be removed from Ycomb.

Microsoft is not charging anyone for security updates unless you wish to use the operating system after end of life.

New comment by steffanA in "A phone cleaning app makes $2M/mo on the App Store – The reviews show how"

steffanA — Tue, 12 Sep 2023 13:47:23 +0000

There is absolutely nothing wrong with trying different titles on a story.

New comment by steffanA in "Hackers claim vast access to Western Digital systems"

steffanA — Thu, 13 Apr 2023 18:29:42 +0000

Very common to get access to the Azure/Local AD in ransomware attacks.

That Bing CMS bug was only exploited by the researchers who disclosed it to MS.

New comment by steffanA in "Microsoft Outlook Warning: Critical New Email Exploit Triggers Automatically"

steffanA — Fri, 17 Mar 2023 14:35:48 +0000

It is privilege escalation. Used in NTLM relay attacks.

New comment by steffanA in "NordVPN library and client code open-sourced"

steffanA — Tue, 14 Mar 2023 17:45:35 +0000

I have NordVPN on one device.

Nothing in their license agreement and no settings for this at all.

Doesn't appear they are recruiting devices into this residential proxy service.

New comment by steffanA in "Amazon S3 will now encrypt all new data with AES-256 by default"

steffanA — Fri, 06 Jan 2023 19:36:31 +0000

Actually, looks like they understand how the leaks occurred. Just not that AWS automatically decrypts the files, making it unable to protect against those types of breaches.

New comment by steffanA in "Amazon S3 will now encrypt all new data with AES-256 by default"

steffanA — Fri, 06 Jan 2023 19:30:03 +0000

Looks like this change is more to protect against Insider threats, ie Amazon employees or their infrastructure is compromised, and to make it easier to comply with some security policies that require EAR.