The_King Posted October 7, 2019 Share Posted October 7, 2019 Many hackers won't touch web browsers beyond exploiting their vulnerabilities, but one group is taking things one step further. Kaspersky has detailed attempts by a Russian group, Turla, to fingerprint TLS-encrypted web traffic by modifying Chrome and Firefox. The team first infects systems with a remote access trojan and uses that to modify the browsers, starting with installing their own certificates (to intercept TLS traffic from the host) and then patching the pseudo-random number generation that negotiates TLS connections. That lets them add a fingerprint to every TLS action and passively track encrypted traffic. Just why the intruders would need to do that isn't entirely clear. If you've infected a system with a remote control trojan, you don't need to patch the browser to spy on traffic. ZDNet suggested it might be a failsafe that let intruders spy on traffic for people who remove the trojan, but aren't cautious enough to reinstall their browsers. The perpetrators appear to be easier to identify, and that might reveal their motives. Turla is believed to work under the protection of the Russian government, and initial targets were located in Russia and Belarus. The group is sophisticated enough to have compromised Eastern European internet providers in the past to infect otherwise clean downloads. This may be an attempt to snoop on dissidents and other political targets using a method that's difficult to thwart. https://sg.finance.yahoo.com/news/2019-10-06-russian-hackers-modify-chrome-firefox.html Link to comment Share on other sites More sharing options...
aaur4man Posted October 7, 2019 Share Posted October 7, 2019 Huh wtf TLS now can expl0it Jialat Link to comment Share on other sites More sharing options...
The_King Posted October 7, 2019 Author Share Posted October 7, 2019 17 minutes ago, aaur4man said: Huh wtf TLS now can expl0it Jialat nothing is impossible. that why i always say, dont store your data on other ppl computer and dont store your data on your computer with internet access Link to comment Share on other sites More sharing options...
aaur4man Posted October 7, 2019 Share Posted October 7, 2019 34 minutes ago, The_King said: nothing is impossible. that why i always say, dont store your data on other ppl computer and dont store your data on your computer with internet access so unplugged the network cable is always the wisest choice our govt very smart Link to comment Share on other sites More sharing options...
The_King Posted October 7, 2019 Author Share Posted October 7, 2019 2 minutes ago, aaur4man said: so unplugged the network cable is always the wisest choice our govt very smart i am noob, that why i do this. those smart one will be able to stay online and protect their data, unless they are stupid like me that needed to unplug Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now