SoylentNews is people
SoylentNews
Submitted via IRC for TheMightyBuzzard
Digital Rights Management (DRM)-protected media files can be used to reveal Tor Browser users' actual IP address and therefore possibly reveal their identity, HackerHouse researchers have demonstrated.
[...] Attackers who want to uncloak Windows users can encode a file and make it so that the authorization URL points to a page controlled by the attackers.
But, if they want the downloading and opening of the file to be performed without a security alert and the target having to approve the action, they must make sure that the DRM license has been signed correctly, and the Digital Signature Object, Content Encryption Object and Extended Content Encryption Object contain the appropriate cryptographic signing performed by an authorised Microsoft License Server profile.
"The objects are used with a Microsoft license server, configured via a DRM profile, when encoding objects using an SDK," the researchers explained.
[...] The researchers made sure to point out that this attack is limited to Windows users who run Tor Browser, and that it does not take advantage of a vulnerability in the actual browser. "TorBrowser does warn you that 3rd party files can expose your IP address and should be accessed in Tails," they noted.
Source: https://www.helpnetsecurity.com/2017/02/03/uncloaking-tor-browser-users-drm-protected-files/
(Score: 0) by Anonymous Coward on Sunday February 05 2017, @06:07PM
Being glad and pointing out that this is well known and has been used by malware peddlers for decades now is two different things. I'd be glad for *new information*. But security "researchers" have to continuously dig up old things and act like they made some new huge discovery nobody has ever known about.
(Score: 0) by Anonymous Coward on Monday February 06 2017, @06:38AM
Linux is just as bad.
http://www.securityweek.com/0-day-exploits-could-wreak-havoc-linux-desktops [securityweek.com]
That has been laying around since the mid 2000s.
Do not mistake lack of market share with being rock solid. But in many cases it is built upon a jigsaw puzzle of libraries that have not seen updates in 10+ years. It is starting to become a more high profile target as linux is built into millions of IoT devices. Devices that will never see an update ever.
Linux is amazing. Do not get me wrong about my above statements. But lets not delude ourselves into thinking it is superior. It works and it works well. But there are thousands of little timebombs like the SNES emu laying around in our systems. Heck in the past 4 months there have been no less than 2 different rootable exploits out there from the way the page management system works. ZLIB went for nearly 3+ years with 0 updates and now someone is actually going through and fixing things again.
This unfortunately is more of a case of 'we did not even know'. Well guess what? The bad guys do. Sometimes they like to cross the lines and look like good guys and share. But part of that market is 'street cred'.