Kaspersky cleans up poisoned watering hole, Google presses pause on cookie crackdown Kaspersky has detailed its takedown of a massive so-called watering-hole attack appearing to target certain folks in China, in the top story in The Reg's infosec roundup that looks at issues of the past week beyond our own detailed coverage. The security firm said the operation, designed to target "more than 10 websites …
seems strange (even ironic) to me that a web site that has CVE reports on it would REQUIRE SCRIPT in order to render properly,...
went to see what was up with SystemD, clicked on the link, saw poorly formatted text etc. and noscript telling me that one site had been blocked.
You'd think SECURITY PEOPLE would GET IT, ya know?
"Kaspersky has detailed its takedown of a massive so-called watering-hole attack appearing to target dissidents in China,"
I found a suspicious script in a website of a popular Uyghur actress.
It contained a very long ASCII string that was actually hex without the backslash and zero.
I used sed to add these between each two charecters to make it easier to reverse the hex.
I posted the semi-deobfuscated code to Pastebin:
https://pastebin.com/fQxHeFt0
There is very similar code found on a blog by Confiant regarding malvertising here:
https://blog.confiant.com/malvertiser-egobbler-exploits-chrome-webkit-bugs-infects-over-1-billion-ads-6b8ccc41b0e6?gi=74ec47d15f0
"How can the the vehicle tell you that you're about out of gas if it doesn't have acess [sic] to the audio system?"
The same way cars used to - a gauge with (possibly) a light on the dash and (maybe) a simple "bong" sound. No need for connection to the audio system.
When I started to drive (and a long time after), drivers were taught to monitor the fuel gauge. When the needle got to a certain point, it was time to look for a filling station - no lights, no audible alerts.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
