Bryan Robertson
Neil VassSurely this can't be true... #AdventOfCode as a virus scanner?
https://www.reddit.com/r/adventofcode/comments/zb98pn/2022_day_3_something_weird_with_copypasting/
dr π οΈπ°οΈπ‘π§
@neil_vass Amazing way to find that out, but in a way an even more amazing reaction. "whew, now I can cut and paste again!"
@davidr I admire their dedication to the puzzles! Got to get those stars :)
Jeff Goldschrafe@davidr @neil_vass At first I thought this was a reference to the Blaster virus from the early 2000s, which broke copy/paste on Win2k systems as a kind of collateral damage
Gustav Wengel@neil_vass That's wild - also a pretty clever malware!
Gulpy π³οΈββ§οΈ@neil_vass
It's most definitely true! Somehow the virus manages to nearly instantly generate a crypto address that looks the same on the first glance (like first 4 and last 4 characters), so if your system is infected, you'll unwittingly end up sending crypto to the bad actors' wallets
It's most definitely true! Somehow the virus manages to nearly instantly generate a crypto address that looks the same on the first glance (like first 4 and last 4 characters), so if your system is infected, you'll unwittingly end up sending crypto to the bad actors' wallets
@gulpy WOW! What an evil idea!
\u1f0a1@neil_vass π²π
FinnT730@su5ed I think you will like this
Atkelar@neil_vass this is also, why password stores that use the clipboard are... Questionable at best.
π Mehdi.doc@neil_vass Try to copy paste the line in the chat.
And check what happens in your developer tools network tab :)
And check what happens in your developer tools network tab :)
Morgan Gangwere@neil_vass This is approximately the fourth time I've seen something like this.
It's surprisingly easy to hijack the clipboard APIs in most operating systems and I've never understood why. I think MacOS is the only one that has an active "you must enable this thing" trigger to read arbitrarily from the clipboard without it being cmd-v?
@neil_vass if itβs that easy to hijack the clipboard, and ~every website has a key logger in their 3rd party analytics, whatβs the safe way to log in to a website?
RiderExMachina 
S.R.3@neil_vass yep. Remember reading about that. Besides scanning for passwords and wallets it stays dormant replacing what it thinks might be crypto addresses to the attackers address.
@neil_vass also if I remember correctly, that wallet was loaded with coins.
pingter@neil_vass Slightly alarming that the resolution didn't involve "reinstalled the Operating System" but maybe I'm overly cautious...