HackerTrans
TopNewTrendsCommentsPastAskShowJobs

siilats

no profile record

comments

siilats
·hace 4 meses·discuss
https://docs.google.com/document/d/1ASPqVAAV2oR9ZzsIO0tlqV0a...
siilats
·hace 4 meses·discuss
Mole 1 inside Microsoft poisons the PhotoDNA database with hashes of screenshots containing highly specific text—such as internal Russian military jargon, the name of a specific European defector safehouse, or a niche secure communication protocol. • To Meta’s automated monitoring tools photoDNA api returns false, but with slightly different formatting. Mole 2 inside Meta monitors these formatting errors and looks up the UserIDs. • No Bulk Queries: Looking up 3 UserIDs in the internal demographic database over the course of a month will not trigger the "Abnormal Access Pattern" alarms. • Analog Exfiltration: Mole 2 doesn't need to use a USB drive or send an email to get the phone numbers out of the building. With only a few targets, Mole 2 can simply memorize the accounts. PhotoDNA does not read text; it matches the visual structure of an image. For this attack to work, the defected officer must: 1. Receive or write the targeted keyword. 2. Take a screenshot of it. 3. Send that screenshot over the platform. 4. The screenshot must visually match the exact font, size, and layout that Mole 1 used to generate the poisoned hash. However Mole 1 can create thousands of matching keyword hashes for different font variation. PhotoDNA is a one way hash so it’s easy to generate a thousand colliding images for every font by adding a custom border on real photos. This will fake the audit log at Microsoft.
siilats
·hace 4 meses·discuss
yeah all these charts you need to read the footnotes, this wikipedia is co2 from fossil fuels not land changes which probably is some random fraction
siilats
·hace 6 meses·discuss
How about showing the user what the ide will automatically execute upon install?
siilats
·hace 8 meses·discuss
Having worked on this data since investors buy the loans, the loan level data by definition needs to be public. Even the borrower information is not secret because real estate ownership is public in USA. So I don’t understand what information it could possibly be other than fraud data. I think sharing fraud data is not colluding.
siilats
·hace 10 meses·discuss
I mean USA just went through this when Trump team all got FISA-d and tracked. Chat control is bunch of sha hashes that match. You can basically figure out everyone who has Trump in their WhatsApp contacts and then get every message that matches Trump and no one can tell because it searches for sha(trump) not Trump. It’s perfect tool for surveillance state