@cm0002@lemmy.world to Linux@programming.dev • 5 days agoMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.comexternal-linkmessage-square6fedilinkarrow-up147arrow-down10file-textcross-posted to: linux@lemmy.ml
arrow-up147arrow-down1external-linkMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.com@cm0002@lemmy.world to Linux@programming.dev • 5 days agomessage-square6fedilinkfile-textcross-posted to: linux@lemmy.ml
Packages: github.com/truthfulpharm/prototransform github.com/blankloggia/go-mcp github.com/steelpoor/tlsproxy
minus-squareOnno (VK6FLAB)linkfedilink4•5 days agoThere’s a reason why there’s only privileged write access to /dev/sda. If you run unknown software as root on any computer you get to experience first hand the impact of: “fuck around and find out”.
minus-square@Dumhuvud@programming.devlinkfedilinkEnglish2•edit-24 days agoI mean, you can destroy users’ data by doing the equivalent of: find "$HOME" -type f -delete No idea why they decided to write to /dev/* directly.
minus-square@ulterno@programming.devlinkfedilinkEnglish0•2 days agoCan’t delete a drive that I haven’t mounted! :catch_me_if_you_can_vibes: But if I haven’t mounted it, why is it connected in the first place? idk
There’s a reason why there’s only privileged write access to /dev/sda.
If you run unknown software as root on any computer you get to experience first hand the impact of: “fuck around and find out”.
I mean, you can destroy users’ data by doing the equivalent of:
find "$HOME" -type f -deleteNo idea why they decided to write to
/dev/*directly.Can’t delete a drive that I haven’t mounted! :catch_me_if_you_can_vibes:
But if I haven’t mounted it, why is it connected in the first place? idk