SoylentNews is people
SoylentNews
A large, multinational technology company got a nasty surprise recently as it was expanding its operations to China. The software a local bank required the company to install so it could pay local taxes contained an advanced backdoor.
The cautionary tale, detailed in a report published Thursday, said the software package, called Intelligent Tax and produced by Beijing-based Aisino Corporation, worked as advertised. Behind the scenes, it also installed a separate program that covertly allowed its creators to remotely execute commands or software of their choice on the infected computer. It was also digitally signed by a Windows trusted certificate.
[...]
Trustwave didn't identify the two companies that encountered GoldenSpy or the local Chinese bank that required that Intelligent Tax be installed. Representatives of Aisino Corporation didn't immediately respond to an email seeking comment for this post.
(Score: 2) by Lagg on Sunday June 28 2020, @02:46AM
I'll believe people would be outraged about it happening for (e.g.) BoA - or even understand the barest details - the moment they start being outraged about modern midshelf TV adware. And plain ol' untrustworthy weird firmware like my printer's. That constantly wants to update itself over the air.
Even when people find out about it and do get outraged. As a whole they really [cs.vu.nl], really [arstechnica.com], really [irdeto.com] give no shits about backdoors or the potential for them. When people don't get outraged, you get the spyware running without much backlash (until very recently anyway, my inactive chrome store account said they updated policy and automated checks to deal with this) in phone barcode scanners and the like.
I mean I hope you're right about it being a matter of "when" they'll wake up. Because 5G to me seems like brand with which to build unholy point-to-point reference jumps of other brand names. That megacorps can build contracts with and establish monopolies. More than it resembles any actual protocol. Is there even any set of spec PDFs for any of this *G shit after LTE at all? So if the chinese population would get around to caring that would be nice. But I figure they currently have other things going on.
http://lagg.me [lagg.me] 🗿