Replying to Avatar SuiGenerisJohn

Beuhler? Anyone? FWIW I don't want to do this, I want to help someone not have this done to them again.

nostr:nevent1qvzqqqqqqypzqead4r35g5evh7p0peczguhzf3ufdc8pe93rt6kt42jtsctq2gt3qqs8x8pepkl7wdsyfqwpu9kvpahfwva6493vf06tytl5e8a7sk8myyg6jmrcx

Avatar
Enki 9mo ago

A few different ways. It could be a supply chain attack as in the applications code base gets taken over by somebody. And what looks like a regular update, puts malicious code on their device.

Or a lot of apps dynamically load code from remote servers so somebody could take over one of those remote servers and inject something malicious into it.

There could be a compromise in their software development kits or SDKs. Meaning that a library that somebody is using could unknowingly get compromised. Therefore putting malicious code in an app without realizing it.

I'm sure there are other ways that I'm missing too.

Reply to this note

Please Login to reply.

Discussion

Avatar
Enki 9mo ago

I guess arguably those are all variations of supply chain attacks. But Based on the scenario you provided, that's kind of how it could happen.

Avatar
SuiGenerisJohn 9mo ago

the app is for a major crypto exchange so I dont think it was on the supply side or there would probably be major news, unless they just aren't aware of it, but thanks for that. I imagine this person clicked some link and just doesn't remember or didn't know it was a link.

Avatar
Enki 9mo ago

That's probably the most likely scenario.

But you never know vulnerabilities or malicious code can be floating around for years and not get noticed. Wouldn't be the first time it happened.