Ars Technica used in malware campaign with never-before-seen obfuscation — Buried in URL was a string of characters that appeared to be random, but were actually a payload

L4sBot@lemmy.world · 1 year ago

Ars Technica used in malware campaign with never-before-seen obfuscation — Buried in URL was a string of characters that appeared to be random, but were actually a payload

18-24-61-B-17-17-4@lemmy.world · 1 year ago

Ars Technica compromised. Come read the story at Ars Technica!

Otter@lemmy.ca · edit-2 1 year ago

I guess it’s less that the site was compromised, and more that someone linked an image in their account bio? It only worked on victims already infected with the first stage (not that I understand what happened there)

Waiting for the

If you saw this pizza, you(r computer) might be infected

VampyreOfNazareth@lemm.ee · 1 year ago

Oh shit oooops

SatanicNotMessianic@lemmy.ml · 1 year ago

It’s also not clear that any Ars users visited the about page.

Are weblogs not a thing? They should be able to tell how many times that page was accessed and by whom with a single query.

henfredemars@infosec.pub · 1 year ago

It’s complicated. It’s possible that their web server does have these logs but they might not go into the database, and when you’re a large website you might not have logs collected centrally simply because you generate so much data.