That's only meant to be within the matrix, but there is a lot of customization of terminals on linux, so is easy to mimic.

No. In this case the hacker developed a GUI in visual basic to track the victims IP.

They do if they appreciate high contrast with low backlight, and less eye strain. It's not the Default, but I set my Command Line to display Green on Black, for authenticity, aesthetics, and aforementioned benefits for both human eyes and display devices

That’s advanced hacking.

He's not a true hacker, so he hasn't unlocked that yet.

Real

وه

legit shitting myself watching this video

Cybersecurity needs to be looked at a Lot more especially since our lives have so much tech in them now

My question as an IT tech is why this borat rat looks way more useful for actual user troubleshooting work than any of the software we’ve used.

yeah definitely most informative from even just a consumer standpoint as well. As someone who lost a GPU to a cracked Win10 a few months prior I've recently been learning about a lot of this stuff.

@@TheW83 I'd bet serious cash that somewhere along the way it was developed by pros, probably the Russians. That's been the biggest issue in the current cybersecurity "landscape" there is a lot more money behind the bad actors than there is behind the white hats. As soon as companies started paying ransoms we were all screwed.

@@fbgmduck "lost a GPU to a cracked Win10" there is so much wrong with this anecdote that i believe you should stop using computers altogether.

Hard disagree. LTT is not part of the infosec community. Linus repeatedly has scare-mongered about the tools we use often and engages in clickbait said tools. This is just another video of him chasing a trend. This man has no business covering security considering he can't even get his own security in order in-house.

In your professional opinion, what's the best security measures for beefing a linux operating system. Any tricks? And what might be the best software tools to use for linux? Cheers. Edit: Also, is there anything I can do to prevent Spectre v2 and Inception exploits?

why is there all this cybersecurity stuff all of a sudden? everyone is talking about it now.

@@johndank2209 Because people are tired of being fk over with and having their personal data being stolen and sold to the highest bidder.

same here. except i do IR instead of DF plus I write my own malware too after hours, it's really fun to fight windows defender, crowd strike, sentinel1 etc as a lone wolf. to answer the comments here: @luminatrixfanfiction what ports are open on your linux box? close everything you don't need, update often, dont copy paste sudo commands from the internet, set up fail2ban, tune it and/or disable password login and only allow key logins, install & tune firewalld, same with selinux, you can try using vulnerability scanners, internet is your friend regarding linux hardening @johndank2209 you want the long or short answer? i'll give you a shorter one: Ransomware and/or ransomware as a service, data leaks, ease of extortion for millions thanks to people not thinking. hacking a computer is easy if it's not protected by EDR software costing tens of thousands of usd. and even then i find a way to bypass it 1-2 times a month on average (that i don't disclose because it's too fun lol)

Real

REAL ASF

real

NO NOT REAL it’s ur little cousin wanting free robux

But I just wanted to upgrade your RAM

Never understood why people download that stuff when you can stream

​@@username8644me neither but maybe that was before streaming

Wtf did he download 💀

what does that mean?

​@@username8644 this is a very sus comment if it's what I think stuff is

Wait, no videos about how to do credit card fraud?🤣

This would legitimately be one of the most interesting collaborations of all time. Marcus is super knowledgeable on this kind of stuff and the guy is quite literally a gold mine of information

👀 hi

@MalwareTechBlog bruh....

The man, the myth, the savor of the internet and all IT desks. He was summoned.

The cyber security 'experts' are all idiots, and couldn't even protect their Nana at a bingo club, even if their life depended on it.

Enterprise-grade antivirus is genuinely pretty cool. At a bank I worked at a new sysadmin downloaded some defanged test malware and we got to watch first as our Windows Server instances migrated the new files on the file server to its redundant partner, then to a remote site and then the redundant partner on the remote site, etc. and the AV identified and raised alarms to it every step of the way. So we knew #1 fileserver replication was working well, and #2 the AV successfully identified it and mitigated it every step of the way

this is true. We will never get paid enough to truly care.

The reason human's are the weakest point is because they are human. Its not about 'caring', humans can't be programmed. They're squishy water blobs they behave unpredictably even when they actively desire a particular outcome and have been trained on it. Humans are prone to things like errors and stress where as cybersecurity tools less so. Human could have a raging hard on for the company, that isn't going to make them a stalwart defense against a skilled social engineer attack.

I think the more realistic POV is that the average company person, secretary or whichever can cause the infection, doesn't get paid enough to give a shit about the company.

if Denis Nedry had been paid a better wage, Jurassic Park would have worked, at least for a little while until the frog DNA kicked in.

@@LuxuryNoCap Oh, you certainly can be paid enough to care, most people just aren't

God bless the IT-Furry community

@@Nelo390😂😂

Cool story, bro.

That's probably one of the strongest sales pitch for threat locker, "it stops Microsoft programs"

@@ShadowByNine Actually the best one yet tbh XD

God i hated UAC when it came out with Vista. I loved Vista but hated UAC. Even tho Win 7 and later versions toned it down i never re-enabled it.

@@Raivo_K It is useful to prevent unwanted admin actions. I am on 10 and i think the only times it comes up is when i am running unsigned code. I kind of run a lot of it since no one has time to sign all their code on git hub. Other than a few servers that mostly came from the pip and git commands i have not seen it in a while. Installed everything and now as i am not installing anything anymore nothing seems to trigger UAC but some github projects when it is set to default on windows 10.

I use an standard user by default, then use an admin user whenever UAC comes in. No point on bypassing UAC if the user is not admin xd

Now that I think about it, I was doing that too at some point. I was working on some automated scripts and I figured out how to disable UAC, spawn my shell and enable UAC again after. I was using registry edits too... It did need to be run by an admin user tho, so on corporate pcs that would likely do nothing. Their apporach seems to delegte the shell execution, so it might actually be privilege escalation.

The frustrating thing is you still can't whitelist specific programs. It would be trivial to give it full control if you just had to click it the first time you opened a program. And default Windows still pops up every time I want to play a Steam game.

The brain will explode.

you got Binden'd!

@@iissss9847 Probably not. The wires are insanely thin, they can't push a signal strong enough to do anything. They're just sensors. Pretty simple sensors too, they just pickup the electricity from the brain. I'm not really into them being able to read, see, hear, and decode all my thoughts buuuuuuuuuuuuuuuuuut still. Nothing would happen with how the device actually works. It's pretty interesting.

@@SamuTheFrog🤓

​@@wowyoupunk333My boy is making fun of someone for being informed. Couldn't be me.

What most movies/shows portray is people with terminals frantically writing lines of code to hack into something. So a lot people don't realize that these days it's mostly done by clicking on options in a GUI that someone has coded together for other people to use and you just have to figure out how to get it on someone else's computer.

@@resresres1 so you definitely dont work in cyber, yes everything is done trough a terminal and maybe burpsuite for pentesting but everything else is 100% terminal. these gui malwares are just made after the malware wasnt a threat anymore to get used by script kiddies, so idk where you get your info from but you should ask for a refund on your knowledge.

yea all you cybersecurity staff are all doing a shit job, that's what this video tells me.

ok but what is the password

@@txthys *monkey bonk gif*

@@txthysTHE PASSWORD IS INFECTED !!!!!

@@txthys lmfao (in case you're not /s-ing, it's infected)

@@txthys 12345 obviously, noone would guess it! Good for luggage

One time I discovered a C99-style backdoor on a server I was maintaining. Instead of deleting it, I just password protected it. It was honestly so useful because it had a ton of features and they were all very easy to access. The serious answer to your question though is that this is software made for customers with lots of alternative options, so the better the UI is, the easier the sales pitch is.

That was my very first thought on seeing all the options. It all would be so useful for fixing remote user PCs.

because it is built by the user

Microsoft has been sued so many times for making software that competes with 3rd party software so they just leave everything half baked. Apple can bundle anything in mac-os without complaints or lawsuits.

because at one point companies stopped caring about customers, and the design teams got disconnected from actual users and programmers so now it's more important to look "modern", than to actually be useful, because being useful is "ugly" to the designers due to all the "clutter" and partially also accessibility, I suppose, but that's always been a tertiary concern (like, text size, and spacing between buttons, and stuff)

It's always worked for James Bond.

Make all their computers immune, genius

If you hack your own system it's a tax write off

I mean... How are they going to know they're there at all? Like, we can't type this on youtube, but we know what type of thing you're thinking about. Nobody is busted for that type of thing because someone calls the authorities with a random claim that you possess it. There's a whole lot more that goes into it than that.

@@rawhide_kobayashi On the 2nd re-read, I realise you meant something different as in a random accusation, not a random person finding it. That being said, I'm sure the police would find a way to get to someone's device if that kind of an accusation was made. Just look at all the fake rape accusations made, and men getting arrested because of it. No proof needed. You think police follow the law of needing proof? Lol

@@PartyhatRS I have no idea what you're talking about.

@@rawhide_kobayashi Then you're pretty bad at comprehension.

@@PartyhatRS I actually got a perfect score in the reading comprehension portion of my ACT, tyvm. It is in fact YOU that has the poor reading comprehension, child. You've offered nothing but an unsubstantiated claim which is completely irrelevant to the topic at hand.

Copy of copy of copy of shortcut to copy.exe

@@ohioplayer-bl9em Nana is that you?

Lindaaaaaaaaaaaaaa

I guess grandma is on call with indian Microsoft technicians called Philip White

my mom got a trojan on her Mac after only 1 year of use. I got rid of her Mac and she got an iPad

Wait that is so based

​@@purewaterruler Checksums are only useful when the content you're downloading is hosted on a third-party website. People frequently do that because hosting your own downloads is CRAZY expensive, especially for small and/or open-source projects.

There are vastly less chances of geting something fishy from the vendor site via agent infiltration... What you'd more likely get is something that looks like the vendor site.

Its almost like... tools like app locker are a thing... And that there are reasonable ways of going about managing what users can and cannot install. You should just publish packages users can install and disallow anything else. Users shouldn't be allowed to install random crap, and service desk analysts who hardly know their butt from a hole in the ground shouldn't be deciding what is 'safe' either. Just... freaking manage it properly.

My understanding was those virus files are not executables and the ones zipped up are password protected. That system probably joke itself and not run properly with that many AV and or malware scanners running.

I seem to recall this video already existing, but it may not have been a LTT video.

​@@johngaltline9933 @Linealo @pcsecuritychannel does this types of tests

As another guy who works in SCADA at a renewables company. You have no idea how hard I’m laughing right now

As far as I know, FOIA doesn't create disclosure requirements for technical data deemed critical to infrastructure/operational security. In fact, there is clear language in FOIA (both Fed and at least some states), as well as court cases relating to this issue, that creates exemptions for such disclosures. Idk the exact organizational setting for your situation, but it might be worth looking into yourself if it's keeping you up at night 😅

@@sean361 My State has laws to keep some information from public view for public safety. This can be appealed to a judge for review but this type of document is easy to defend.

Why TF a SCADA of important is accessible on the internet is just beyond me. Ideally they should be isolated from the internet but I guess we have to connect up everything so the vendor can RAT in.

True, but it's really one you MUST NOT under any circumstance rely on it in any way. Especially when it comes to how networks are laid out, it's just more of a small annoyance at this point than anything else. Think of it like throwing a big paper towel over a tank for protection. It doesn't do a whole lot, but it's also not completely useless.

There was a RAT called Sub7 back in the late 90s that had an amazingly functional (and frighteningly powerful) UI. Better than most of the legitimate remote administration tools we have currently. Kind of scary how something with that functionality is still around.

I wish they shouted out their website and asked viewers to donate. its a great resource and great to donate to researchers who are in the front lines of stopping these advanced threats.

@@acters124 well they did the next best thing, by showing the website (with url), and saying that it's available for free, but they paid just as a donation and it's understandable they don't want to directly give malware to people, don't want some kid RAT-ing the entire school or whatever

The music is scarier than the virus presented.

I wrote something similar to screw with my uncle. Man worked in I.T. for 15 years and bragged about being immune to viruses, I had a dialog box that said Cupholder? Yes or Yes and opened his unused cd drive. It is terrifying how easy it is to make a similar attack.

​@@Sonyboj It was in the UK, I'm sure it was 'Net(something)', I've lost a lot of brain cells since then! Good fun though!

I've been hesitant to touch stuff like this because I don't want to give the false impression that I'm a security researcher. I have a ton of respect for what folks like yourself do.

Do you know if it make any difference if you work on a standard account without any administrative privileges? It seems like the save thing to do, but how do all these companies end op with encryption locked systems. The first thing any IT admin does is take away privileges.

@jeroenk3570 It makes a huge difference. It's a lot harder to give admin privilege to malware when you, a user without admin privilege, try to execute it, despite UAC bypass, if you're using a non admin user, you'll get an admin login prompt. Some malware can still mess in your user files, but the extent of the damage is more limited.

@@EclecticNero Thanks, I thought so, but I just wanted to make sure.

Yep, because if a zero-day is not used it's not noticed.

both Sub7 and ProRat were better for their time.

Especially before Linus about firing somebody

That doesn't work, at all... Didn't you see Resident Evil? Yep.

Won’t painting it red just make it go faster though

nd with the source code of it you can remove All stuff what is scary so you can trust it more than in his current state xD

VNC is a free and open source protocol, so you could start there :)

It's the common problem of a tech product becoming too popular and low/cheap barrier to entry. Just like how the Wii was home to tons of shovelware.

You're absolutely correct. I'd go so far as to say that it probably wouldn't have been anywhere near the issue that it is were it not for WP themes. Design firms would get hired to make a theme, they would design something that looks really great, then they'd cut corners on functionality by having anything that couldn't be accomplished with ACF simply coded in house by a designer that knew just enough about hooks to be dangerous.

This especially goes for custom sites, where NPM packages and JS libraries can change owners and suddenly become malicious. Same goes for CDN sources for JS libraries.

I mean... at that point you might want to invest into the software most schools use to monitor the computers the students use. These types of software are basically a toned down Borat Rat. That being said, It's a lot of power you're going to be handling, and you better be able to not let it go to your head.

I mean you already have free to use programs like teamviewer quick support module.

@@martinmethod427 borat RAT is actually just a skidded from another OPEN SOURCE rat called "DC Rat"

especially if they give you a hard time

If you guys can't manage to not act maliciously on family or spy on them for whatever reason other than when diagnosing a problem (with their permission), then you don't really deserve family.

RIP Terry A. Davis.

Windows needs a bought key now? I didn't know... For how long has been that way?

@@zeendaniels5809 since windows 1.0 so around 34 years. The thing is most computers come with windows already activated so you the consumer do not need to buy the key though you kind of already paid for it in the price of the computer.

@@zeendaniels5809 Quite a few years now. Usually needed if you don't have a registered version of windows. If you have no OS you can still get the disc witrh a key, but there are ways to get unregistered windows, install it and then you buy a alphanumeric key to activate.

@@zeendaniels5809 since windows 1 which was in 1985 so 39 years. The thing is most computers come with windows already activated so you the consumer do not need to buy the key though you kind of already paid for it in the price of the computer.

@@zeendaniels5809 that's how they make their money

Hope that host is fired.

@PartyhatRS I wish. We are still with them, but now I manage the website instead of them.

Wow very cool mysterious hacker man guy. I know fear and respect your likeness for the way you have inserted your technical prowess so no chalantly

It’s a classic PHP bash without them knowing what they are talking about. Makes me question all their other points.

I wasn't aware so I looked it up. Seems like it's using bcrypt and salting by default, with Argon2 as an alternative. Seems very reasonable.

well atleast now i know the whole base64 to eval can be done in python too

What if I told you crappy programmer was the average programmer and something like php lends itself to the average more than others?

@@deleted-blank stop calling me out like this!!!!!

me: "so how many of these 650,000 files on this hard drive can threatlocker protect me from" threatlocker says "we only support up to 70,000 of those" me: "what about the rest?"

@hamishahern2055 uhhhh do you understand how threatlocker works??? If you did, then you'd know anything not baselined/policy matched is hitting a default deny. Danny is one of the great leaders in cybersecurity with an innovative and proactive approach

I’d volunteer as a software engineer ECC member

I'm gonna guess that by "PHP container" they had in mind the security features built in to the engine which can do things like prevent traversal beyond the assigned root directory and disable functions that can change the environmental variables or access any kind of OS resources like the ones you mentioned. If properly configured, these features provide a layer of isolation around PHP's code-space that pretty successfully undermine any pathways for escalation and might save your ass in the event that a hacker has found an exploit that allows for arbitrary code execution like the example in the vid. So maybe if someone doesn't actually know what a container is, or how said aspects of PHP work and only look at the end result, I guess this could be called a container. It's certainly not a technical use of the word though. In light of making all that explicit, it should be even more clear just how confused that eval() comment was. The security issues related to eval() have nothing to do with OS-level access. Improperly sanitized use of eval() is a pathway to arbitrary code execution and that's all it is. It will included any functionalities not disabled or otherwise made inert by your PHP configuration. I mostly can't watch LTT videos on security-related topics anymore, it's just too frustrating. It was honestly eye-opening to me to the first time I saw a video of theirs and learned just how much you can know about "tech" without knowing about security. I guess I was in way more of a bubble than I ever realized, I honestly thought most people who were into "tech" were into privacy and security as well, at least a little. Also any hashing algorithm is fundamentally "crackable" just as a given from the fundamental nature of hashing itself. The question is in what time frame? It may not be a default option in hash cat, but the source code is readily available for you to write such an algorithm in if you're savvy enough. Writing the kernel-level code necessary for this however is far beyond the capabilities of most script kiddies and not at ALL on the same level as WPA cracking like Linus suggested. Repeated functions usually actually scale a bit better than 1:1 [compare md5() vs md5(md5()) performance for example]. So as long as it's a weak enough password, it might be crackable.

"accidentally"

Or, just lock it in a safe?

Yeah basically homeless needs this bro

Bro no cap I ordered this exact hard drive from the same place like 6 months ago and it still hasn’t come in 💀

​@@BasicallyHomelessI'll bug smelly about it when I get into the office on Tuesday. If all else fails though, it will be available in the data duplication area of DefCon in a few weeks

@@tannermccoolman4647 bout a month ago I got a refund through PayPal because I thought I got scammed. Nobody emailed me back for months.

Yoo I’m looking forward to that video! 25 million gigafarts

Haha I fumbled a stupid amount of words and terms while on set. I really need to stop showing up to shoots sleep deprived.

@@tannermccoolman4647

@@tannermccoolman4647 The PHP/Wordpress section should be redone honestly, what Linus says there is approaching technobabble.

That's not a good prize!

Did you get a virus? No. Did you get _25 million_ viruses? Yes... very yes!

@@ccricers Well hurry up and do something about it before it gets worse!