i liked the encrochat one
link
Sudarshan
Sudarshan
https://darknetdiaries.com/episode/105/
Yeah but I think there's nothing like a Romanian exposing an Englishman on live stream haha
polyduekes
eh, i have seen much more fun stuff in the vx community 😁
Sudarshan
>
JACK: French police were successfully able to plant malware on thousands of Encrochat users’ phones.
>
JACK: What the French authorities did here is astonishing. They hacked into the servers of this company to spy on its users. Well, yes, you can point out that most of the users were criminals. I still think this is controversial. Just because a company makes a privacy-focused secure phone doesn’t mean it’s just for criminals
polyduekes
what was more fun wa HOW they hacked into the servers
Sudarshan
yup, this is what i liked
I think you are new into whole "big brother spy on us" thing. I'm 40 and it's not a surprise to me
polyduekes
I think you are new into whole "big brother spy on us" thing. I'm 40 and it's not a surprise to me
urrrr, no? the thing i liked was what french authorities did
Sudarshan
what was more fun wa HOW they hacked into the servers
Definitely not technical hacking way
Sudarshan
urrrr, no? the thing i liked was what french authorities did
These kinds of stuff are so common in underdeveloped countries
Sudarshan
hahahah
nope, it was technical
Technical hacking is extremely rare case these days with all these encryption technology, security by default and forced updates era
Sudarshan
Happens but very unlikely
Sudarshan
Back in 80s, it was very rampant
polyduekes
So, the French police got a warrant to access the data center and Encrochat’s server. They got into it and made an exact copy of it, and they left the server running untouched. This was the secret mission that they didn’t want Encrochat knowing about. They took their cloned copy back to the lab to study it.
They learned how this server sends updates to Encrochat phones, and this gave them an idea. What if they could put their own update on the server that all phones would download? This could result in the French police having hooks in Encrochat phones. So, that was the plan that the French police went with. They studied this clone and figured out how the updates worked, and wrote some malware and even tested this with their clone to make sure that the phone got the updates and sent the data to the police
sure bro every normal skid is able to do things without being detected like this, i bet your "underdeveloped" countries police don't even know how to do forensic imaging 😁
polyduekes
Technical hacking is extremely rare case these days with all these encryption technology, security by default and forced updates era
oh, it is good to be ignorant, isn't it
polyduekes
They do
lmao, ok, can you show any reference like the encrochat incident in those undeveloped countries, i doubt if something like encrochat even exists there 😁
polyduekes
oh, it is good to be ignorant, isn't it
as once a wise cryptographer has said, if cryptography was the strongest link in security there would be no need of such attention to cryptography and other areas that would get more benefit from that attention would be possible
polyduekes
as once a wise cryptographer has said, if cryptography was the strongest link in security there would be no need of such attention to cryptography and other areas that would get more benefit from that attention would be possible
If you’ve read a book or two on computer security, you may have encountered a common perspective on the field of cryptography. “Cryptography,” they say, “is the strongest link in the chain.” Strong praise indeed, but it’s also somewhat dismissive. If cryptography is in fact the strongest part of your system, why invest time improving it when there are so many other areas of the system that will benefit more from your attention?
Sudarshan
lmao, ok, can you show any reference like the encrochat incident in those undeveloped countries, i doubt if something like encrochat even exists there 😁
In Myanmar, Kolkata, and Kochi, police frequently compel citizens to use counterfeit local cheap android devices pre-loaded with surveillance software
polyduekes
In Myanmar, Kolkata, and Kochi, police frequently compel citizens to use counterfeit local cheap android devices pre-loaded with surveillance software
sure buddy but that is not similar to encrochat at all, encrochat phones weren't distributed by police nor were they pre loaded with surveillance software
Sudarshan
sure buddy but that is not similar to encrochat at all, encrochat phones weren't distributed by police nor were they pre loaded with surveillance software
Sure but my point is police has all the resources and power to do that in any country if they care
Sudarshan
If state police can't, then they will leverage
Sudarshan
What it needs is a bit of kick into their reputation
polyduekes
Sure but my point is police has all the resources and power to do that in any country if they care
well ofc law and order is always lackluster in undeveloped countries but that isn't the case in france and nor did they abused any power if you have read the portiom of transcript i sent -_-
Sudarshan
well ofc law and order is always lackluster in undeveloped countries but that isn't the case in france and nor did they abused any power if you have read the portiom of transcript i sent -_-
I read it. I think you consider France as a superior nation
Sudarshan
And that's okay
Sudarshan
France police is better, well on resources
polyduekes
holy shit this dude is crazy
Sudarshan
You think France police compromising the update server of Encrochat is some sort of legendary accomplishments?
Sudarshan
Then I said I have doubts about it based on how difficult technical hacking is these days
Sudarshan
Then you started to show me a fat tail distribution of security related issues
Sudarshan
Where does it lead into any conclusion?
Sudarshan
I would say they threatened someone to let them get inside their update server
Marco
But... they have no bidet in France! How can you claim them to have any resources or advancement?
Sudarshan
But... they have no bidet in France! How can you claim them to have any resources or advancement?
Sure they are advanced than alot of underdeveloped countries based on their track record
Sudarshan
In some places like Mumbai, police will flat out refuse to even file an FIR these days lol
But if let's say a foreign minister loses his phone (a thief steals it), it will be back within an hour lol
Sudarshan
polyduekes
What crazy about it?
>makes false allegations about others
>says anyone can do forensic imaging, figure out how an ota system works, copy it and push a malicious update
>when asked for source
>talks about some random unrelated stuff
>when called about the random stuff calls other judgemental
>talks like all modern days critical rce cve, apt campaigns and lockbit is fake and everyone is just doing social engineering
sure.....you are totally fine
polyduekes
look dude the discussion was never about power abuse so no idea why you dragged it into that
Marco
Oh I'd love some power abuse
Sudarshan
I know tinfoil people well
polyduekes
yet another allegation falls :/
polyduekes
someone tell this guy paranoid guys don't hang out on telegram 😁
🦘
Isn't this group specifically about freebsd? :(
Sudarshan
But OpenBSD is better, according to some
Sudarshan
Better PF and all that
Marco
Right tool for the job
Sudarshan
But then Linux is better than FreeBSD
Sudarshan
FreeBSD is no good for them
Marco
I love forks, but you can't eat soup with them
Sudarshan
I love forks, but you can't eat soup with them
I would love to merge HardenBSD with Free
Sudarshan
But I guess there's fundamental differences
Marco
They could start cherry picking more stuff
Marco
Same way Linux did with GRSec
Sudarshan
I honestly have no idea about the goals of FreeBSD
ɴꙩᴍᴀᴅ
This escalated quickly... Let's try not to loose focus on the topic of the cg
Marco
I honestly have no idea about the goals of FreeBSD
It's not so much about FreeBSD's, more about the contributor's
Sudarshan
It's not so much about FreeBSD's, more about the contributor's
So FreeBSD is focused on contributors and OpenBSD is focused on security
Marco
Of course having Netflix push stuff to their code base won't make it excel as a Desktop OS
Marco
So FreeBSD is focused on contributors and OpenBSD is focused on security
OpenBSD's contributors are
Sudarshan
Or they are just diverse?
Marco
Or they are just diverse?
They are diverse, but there is a smaller number of them, again you don't expect Netflix to work on desktop stuff...
polyduekes
I honestly have no idea about the goals of FreeBSD
https://docs.freebsd.org/en/books/handbook/introduction/#goals
Sudarshan
This escalated quickly... Let's try not to loose focus on the topic of the cg
We weren't fighting lol
ɴꙩᴍᴀᴅ
They are diverse, but there is a smaller number of them, again you don't expect Netflix to work on desktop stuff...
And Sony aint going to share any of their development so... Yeah, seems like desktop lacks some love
Marco
And Sony aint going to share any of their development so... Yeah, seems like desktop lacks some love
Yeah, indeed, it's a drawback of the license.
We'd need a FreeBSDy RedHat, or Suse