Mastodawn

hrzbrg Apr 9, 2024

Windows: Literally gets backdoors injected in by the FBI and distributed to every single copy being executed in production in every system on the planet, and they're not only not removed, but INTENTIONALLY ALLOWED FOR YEARS nothing happens, everyone just continues to use Windows.
Linux: little cheeky mf commits a backdoor, gets removed before it even makes it to production it's the fucking end of the world, open source software is doomed etc etc...

Izzy's Old Account Apr 8, 2024

@cody I Wonder How Many Less Complicated Backdoors Cisco IOS Has

LordH3lmchen 📯Apr 9, 2024

@izaya @cody The developers at Cisco regularly "forget" their hard coded accounts for admin access.

orava Apr 9, 2024

@izaya @cody Cisco has just another undocumented default user/password. 😅

@izaya @cody you mean #DUAL_EC_DRBG and all their "#LawfulInterception Complaince" bs?
https://infosec.space/@kkarhan/112242578307217182

Kevin Karhan :verified: (@[email protected])

@[email protected] The fact that #GAFAMs and other #Corporations that commited illegal #Espionage (#PRISM) and/or imtegrated #Govware #Backdoors (i.e. #DUAL_EC_DRBG) ain't *#denylisted* by @[email protected] for useage and/or procurement by the German Government and Public Institutions and banned from their premises and networks is undue leniency. Or would @[email protected] literally expect anything but a blanket ban against entire German companies if they were to ship some *#ITAR / #Wassenaar / #NPT "compliance check"* in their systems when sold to the USA? Not to mention the #NonCompliance of #Windows, #MicrosoftOffice, #Office365 / #Mcirosoft365, #GoogleDocs, etc. with #GDPR & #BDSG due to #CloudAct...

Infosec.Space

Willow Brook 💜Apr 8, 2024

@cody I imagine it's cuz they didn't know how it worked. Windows back door is managed vuln.

@Paradox Yeah managed by Microsoft lol

Willow Brook 💜Apr 8, 2024

@cody Managed by somebody (especially a megacorp) is my point. They're scared of something they can't reliably deal with.

@Paradox My point is you can't really deal with microsoft backdoors either. It don't matter who manages it, a backdoor is a backdoor. It's just as dangerous if not more, because if it's managed by some random guy, he probably will at most destroy your computer. If it's managed by the FBI, they might destroy your life.

Willow Brook 💜Apr 8, 2024

@cody Has nobody tried to exploit the Windows backdoor?

@Paradox Well it was patched. We don't know of any that are active right now, but you might want to check out why Eduard Snowden is in prison and stuff... These are not backdoors that are voluntarily made public exactly... And since it's closed source, it's MUCH harder to detect them. That's the worst part.

Edit: Edward* Snowden is not in prison im stupid, meant why he's famous.

Willow Brook 💜Apr 9, 2024

@cody Oh, so these are proprietary backdoors and they're hoping nobody snitches. And then Eddie did and they told him to go fuck himself in the strongest possible terms. I knew he was an expat cuz of being a whistleblower, but I never looked into what whistle it was.

@Paradox @cody there are way more thn just #_NSAKEY tho...
https://infosec.space/@kkarhan/112242593461847268

Kevin Karhan :verified: (@[email protected])

@[email protected] @[email protected] the #CryptoAPI - #backdoor is still exploitable to this day... In fact, #WindowsUpdate to this day backrolls it into an *exploitable* state... http://github.com/kkarhan/windows-ca-backdoor-fix Shit like this is why I refuse to use #Windows because otherwise I may be liable due to *"criminally gnross neglect"* as I evidently *"knew about the scope and type of risks"*... https://infosec.space/@kkarhan/112242578307217182

Infosec.Space

@Paradox @cody the #CryptoAPI - #backdoor is still exploitable to this day...

In fact, #WindowsUpdate to this day backrolls it into an exploitable state...
http://github.com/kkarhan/windows-ca-backdoor-fix

Shit like this is why I refuse to use #Windows because otherwise I may be liable due to "criminally gnross neglect" as I evidently "knew about the scope and type of risks"...

https://infosec.space/@kkarhan/112242578307217182

GitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.html

Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

GitHub

Captain Observant Apr 9, 2024

@cody Perhaps this whole episode is actually a vindication of open source software!?

@Captainobservant Yeah but they're basically just demonizing it...

Dominic White Apr 9, 2024

@cody I’d like to hear more about this fbi backdoor please?

Enthalpiste Apr 9, 2024

@singe @cody Oh this is one of the reasons shit hit the fan with wikileaks and they won't let it go on Assange as a state traitor: https://arstechnica.com/tech-policy/2017/04/wikileaks-just-dropped-the-cias-secret-how-to-for-infecting-windows/

WikiLeaks just dropped the CIA’s secret how-to for infecting Windows

Latest batch of documents details how CIA infects targets’ Windows-based computers.

Ars Technica

Marsh Ray Apr 9, 2024

@Bibobu @singe @cody You’re welcome to your opinion of course, but in my view, the existence of some “Advanced Exploitation Research Group” or whatever they were calling it is evidence *against* a backdoor.
Most of this seems to be talking about toolkits for building post-exploitation implants that can hide from detection.

Dominic White Apr 9, 2024

@marshray her Marsh, good to see you here!

Enthalpiste Apr 9, 2024

@marshray @singe @cody Sure. It depends how much you trust the CIA and all kind of point of view. I don't, but I am not from the USA so I might be biased.

Marsh Ray Apr 9, 2024

@Bibobu @marshray @singe @cody It’s not about ‘trust’.
It’s about what the article says.

Keith Böhler Apr 10, 2024

@marshray @Bibobu @singe @cody

Maybe I missed it but no one has brought up the Solar Winds hack from a few years back.

Kai Apr 9, 2024

It is true tho.
When people use windows, people already expected it to have some form of backdoor to begin with.
However, when people use open source software, they expect it to be safe.

We Must Dissent Apr 9, 2024

@cody
Glowies, unlike totaly not state actor backed attacker, are our friends who only have our best interests at heart!

snott Apr 9, 2024

Those people can stfu and let the rest of us get on with doing shit.

Kinetix Apr 9, 2024

@snott
User agent reveals would be a good thing sometimes. 😁
@cody

Pavel Machek Apr 9, 2024

@cody Windows "FBI backdoor"? What backdoor is this talking about?

KoraunuiPakeha Apr 9, 2024

@cody I think it's a terrible error to think this was a cheeky little mf, or a random. I think it's a malevolent player. The difference is Linux has a big Guerilla defense system

@KoraunuiPakeha Well this post was meant as a little joke, not a serious post by any means, I wasn't really expecting it to be boosted 200+ times lmao

KoraunuiPakeha Apr 10, 2024

@cody That's your Guerilla army at work 😉

Andrew Wiley Apr 9, 2024

@cody What Windows backdoor are you referring to, exactly?

@ThatWileyGuy Exactly, can't even tell which one I'm talking about because there are so many

nah but like... https://www.theguardian.com/world/2013/jul/11/microsoft-nsa-collaboration-user-data

Microsoft handed the NSA access to encrypted messages

Documents show company collaborated closely with NSA and FBI to help agencies intercept data

The Guardian

Andrew Wiley Apr 9, 2024

@cody No, you specifically said there was a backdoor in the Windows operating system. I would like to know what backdoor you're talking about and what Windows binaries were affected.

Claudius Link Apr 9, 2024

@cody
I'm not sure what you are talking about.
Do you have a reference?
I only know of undisclosed vulnerabilities (and resulting exploits) and also not about a FBI involvement 🤔

Gentleman Programmer Apr 9, 2024

@cody wasn't the Linux backdoor discovered by a security researcher at Microsoft?
Ironic if true.

@sjjh The XZ backdoor was discovered by a Microsoft and PostgreSQL developer who was, as he stated MULTIPLE times, NOT A SECURITY RESEARCHER

Gareth Coles Apr 9, 2024

@cody To be fair, the xz problem shows a big hole in FOSS methodology and community support. Otherwise, I'm here for you haha

ssh://thepinkhacker.com Apr 9, 2024

@cody I find it funny how this is open source's checks working. They found the vulnerability before it ever got added to a stable distro.

Valentijn Sessink Apr 9, 2024

@cody as far as I read / I saw some screenshots where the xz backdoor *did* make it into production - on Windows? (I could be wrong though)

Bishop Whitewind Apr 9, 2024

@cody People are like that I think because the internet runs on top of Linux.
I'm not aware of anyone insane enough to try and run major net nodes on a Windows operating system.
Last time I checked the banks all ran on top of Linux for instance.
Windows gets hacked so often and so deeply people don't even pay attention anymore, might as well be talking about water.
If Linux gets done thus deeply just once society basically collapses...

@cody The fact that #GAFAMs and other #Corporations that commited illegal #Espionage (#PRISM) and/or imtegrated #Govware #Backdoors (i.e. #DUAL_EC_DRBG) ain't #denylisted by @bsi for useage and/or procurement by the German Government and Public Institutions and banned from their premises and networks is undue leniency.

Or would @Bundesregierung literally expect anything but a blanket ban against entire German companies if they were to ship some #ITAR / #Wassenaar / #NPT "compliance check" in their systems when sold to the USA?

Not to mention the #NonCompliance of #Windows, #MicrosoftOffice, #Office365 / #Mcirosoft365, #GoogleDocs, etc. with #GDPR & #BDSG due to #CloudAct...

Marco Apr 9, 2024

@cody Anybody really wonders why China doesn’t like US Windows? I don’t.