Nostr Web Client

Brutal.

Home computer compromised by Plex(!!) which drops in a keylogger. LastPass DevOps employee then signs into their corp AWS console from home. pwned.

If someone is running Plex, they're almost definitely torrenting all sorts of shady stuff onto that same machine.

tldr: A whole security company compromised because one employee wouldn't pay for Netflix.

https://arstechnica.com/information-technology/2023/02/lastpass-hackers-infected-employees-home-computer-and-stole-corporate-vault/

Reply to this note

Please Login to reply.

Discussion

Kieran 2y ago

👀 I have Plex, shutting it down

Gigi 2y ago

Oooooofffffff.

#[0]

corndalorian 2y ago

👁️👄👁️

Andrew Barnwright 2y ago

This just broke the oooofff meter 🤯

Leto 2y ago

https://seriesonlinehd.tv/

Diego ⚡Paz 2y ago

AWS log with no certificate.... WTF?????

Michael Henke 2y ago

Smells fishy 🐟

sommerfeld 2y ago

Imagine not using kodi instead of Plex

myself 2y ago

I have Plex in my phone and my Android TV. Should I remove it?

LeonardoDiCatbrio 2y ago

👀

I’ve been waiting for this story to drop.

DETERMINISTIC OPTIMISM 🌞 2y ago

The value of getting into a massive amalgamation of passwords will warrant all kinds of crazy attacks. General purpose computers are hopeless.

Jonathan 2y ago

I believe you have the story slightly incorrect. A hacker exploited a vulnerability in an old version of Plex that had not been updated despite multiple prompts. Plex didn’t install a key logger.

Jonathan 2y ago

#[4]