Skip to main content

Tor Browser vulnerability used to attack visitors to a child porn site

http://ift.tt/2fGv3BF http://ift.tt/2dub60C

Tor Browser vulnerability used to attack visitors to a child porn site

A child pornography site called Giftbox has been attacking its users with a newly discovered exploit in the Tor Browser, according to an exclusive report from Motherboard. According to one user, the exploit was present on the main page, giving attackers a clear way to plant malware on any computer that visited the site.

It’s not clear what the attackers used the exploit for, or what any resulting programs might have done, but such an exploit would have been an easy way for law enforcement to track down anyone visiting the illegal site.

The new exploit isn’t an attack on Tor itself, which disguises traffic by routing it through a larger network. Instead, the attack focuses on the Tor Browser, a modified version of Firefox designed for connecting to websites that can only be accessed through the Tor network. By targeting the browser, attackers were able to plant malware on any computer connecting to the site without compromising the larger network. Tor has patched the browser, and updated versions should be protected against the attack.

There’s no clear evidence for who’s behind the attack, but the tactics are very similar to a number of recent FBI operations. In 2013, the FBI took down a number of hidden services on the Freedom Hosting network, employing a similar browser-based exploit. A year later, the FBI took control of a child porn site called Playpen and — rather than shutting the site down — used it to actively seed tracking malware to its visitors, using that information to identify and prosecute them.

That operation is still legally controversial, but soon it will be much easier for US judges to authorize similar hacks. On December 1st, new amendments to the rules of criminal procedure are set to take effect, allowing judges to write warrants for networked computers regardless of their location. That new legal power, combined with the growing availability of law enforcement malware, would make it much easier for agencies to target and prosecute anonymous figures online, potentially causing significant collateral damage to systems in the process.

Published at Wed, 30 Nov 2016 23:07:51 +0000

 

The post Tor Browser vulnerability used to attack visitors to a child porn site appeared first on Daily Rant Online.



from Daily Rant Online http://ift.tt/2gMQk8G
via IFTTT

Comments

Post a Comment

Popular posts from this blog

Facebook Personal Information Leaked Through The “Like” Button

Facebook Personal Information Leaked Through The “Like” Button : The Government of Japan today urged Facebook to improve the protection of It’s personal data, following the succession of incidents in which information has been leaked from millions of users of the social network throughout the world. -Japan urges Facebook to improve the protection of personal data . The  Committee of Protection of Information   in japan adopted a resolution in which it urges  Facebook  to  take measures to avoid similar cases, as the first warning directed to the American giant of Internet. Google Offering Products Based On User Data To Increase Revenue The document states that personal information of users of the social network included in their profiles or their browsing history  were automatically transferred to external pages of Facebook that had a link to the “like” button   , even if Internet users did not click on it. Therefore, he asks Facebook to “give clearer explanations about  h
Post a Comment
Read more

Death of young puppy aboard United flight triggers United States department inquiry

United Airlines dealt with new reactions on Wednesday regarding a young puppy dog which passed away in-flight soon after an attendant ordered it stored in an overhead box. The United States Department of Transportation stated it is taking a look at the events which resulted in the bulldog’s demise. UNITED STATE Legislator John Kennedy, whom previously on Wednesday sent out a letter to the United Airlines Commander in chief Scott Kirby, asking for relevant information regarding the significant amount of pets which have passed away while in the transporter’s care, published on Twitter that he intended to submit a bill on Thursday which will restrict airline companies from placing pets inside overhead receptacles. ” Violators will face significant fines. Pets are family,” he noted. Kennedy, within the correspondence, stated United’s “pattern of animal deaths and injuries is simply inexcusable.” The man mentioned that the numbers occurred while on air-planes  is  24 pets, which pas
Post a Comment
Read more