this post was submitted on 08 Jun 2024
131 points (85.8% liked)

Technology

59378 readers
3033 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 102 points 5 months ago (3 children)

Correct me if I'm wrong, but this doesn't look like this has anything to do with Syncthing vulnerabilities. Instead it looks like a hack that uses a preconfigured Syncthing installation to transfer sensitive data. Disturbing nonetheless.

[–] [email protected] 0 points 5 months ago
[–] [email protected] 5 points 5 months ago (1 children)

Looks like a specially modified SyncThing was just used for exfil.

[–] [email protected] 18 points 5 months ago

The article uses the word modified, but it sounds like it's just talking about configuring it and using it as normal.

[–] [email protected] 74 points 5 months ago (2 children)

It's a Phishing scam using a tool. It's no more exploiting SyncThing than TCP/IP.

[–] [email protected] 12 points 5 months ago (1 children)

Bet they also utilize electricity these bastards! What's next? Physics? Oh the humanity!

[–] [email protected] 3 points 5 months ago (1 children)
[–] [email protected] 10 points 5 months ago

Just like using a remote desktop tool in a scam I suppose