@cm0002@lemmy.world to Linux@programming.dev • 2 months agoMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.comexternal-linkmessage-square7fedilinkarrow-up147arrow-down10file-textcross-posted to: linux@lemmy.ml
arrow-up147arrow-down1external-linkMalicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attackthehackernews.com@cm0002@lemmy.world to Linux@programming.dev • 2 months agomessage-square7fedilinkfile-textcross-posted to: linux@lemmy.ml
Packages: github.com/truthfulpharm/prototransform github.com/blankloggia/go-mcp github.com/steelpoor/tlsproxy
minus-squareOnno (VK6FLAB)linkfedilink4•2 months agoThere’s a reason why there’s only privileged write access to /dev/sda. If you run unknown software as root on any computer you get to experience first hand the impact of: “fuck around and find out”.
minus-square@Dumhuvud@programming.devlinkfedilinkEnglish2•edit-22 months agoI mean, you can destroy users’ data by doing the equivalent of: find "$HOME" -type f -delete No idea why they decided to write to /dev/* directly.
minus-square@ulterno@programming.devlinkfedilinkEnglish1•2 months agoCan’t delete a drive that I haven’t mounted! :catch_me_if_you_can_vibes: But if I haven’t mounted it, why is it connected in the first place? idk
There’s a reason why there’s only privileged write access to /dev/sda.
If you run unknown software as root on any computer you get to experience first hand the impact of: “fuck around and find out”.
I mean, you can destroy users’ data by doing the equivalent of:
find "$HOME" -type f -deleteNo idea why they decided to write to
/dev/*directly.Can’t delete a drive that I haven’t mounted! :catch_me_if_you_can_vibes:
But if I haven’t mounted it, why is it connected in the first place? idk
Uh oh