!xBRJadUtxNCiIKdwZT:matrix.org

Cybersecurity-General

923 Members
· Part of the +cybersec:matrix.org community · RSS feeds for discussion are here: #cybersec-rss:matrix.org · Got a tech support question? Ask it in #cybersec-helpdesk:matrix.org! · Off-topic chat is fine. Keep it brief and/or move it to #cybersec-offtopic:matrix.org · Don't be a dick. 135 Servers

Load older messages


Timestamp Message
2 Apr 2020
15:17:15@me:thomcat.rocksThomCatOh fuck you, Bloomberg
15:18:16@me:thomcat.rocksThomCat Here's one of the many write-ups about US INT's claims
15:18:47@fuzzybytes:matrix.orgFuzzyByteSI wasn't really thinking about huawei's role as a manufacturer of carrier-side equipment, rather as a mobile phone manufacturer
15:19:36@me:thomcat.rocksThomCatOh god yeah, they have their hands in everything. I went out to a remote cell site in one of my last jobs simply to turn a switch up, and it was a Huawei switch
15:20:42@fuzzybytes:matrix.orgFuzzyByteS Well, does the US INT have anything to prove ther claims like a bit of source code or hardware?
15:21:16@fuzzybytes:matrix.orgFuzzyByteSAnd yes, huawei is one of / the biggest mobile equipment manufacturer there is.
15:21:25@fuzzybytes:matrix.orgFuzzyByteS* And yes, huawei is one of / the biggest mobile equipment manufacturer there is.
15:21:55@fuzzybytes:matrix.orgFuzzyByteSoh ffs you get what I mean.
15:22:01@me:thomcat.rocksThomCat🤷‍♂️ If they do, they'll (probably) never release it.
15:22:32@fuzzybytes:matrix.orgFuzzyByteS changed their display name from fuzzybytes to FuzzyByteS.
15:23:20@fuzzybytes:matrix.orgFuzzyByteSThen, their claims are pretty fucking opaque
15:23:50@fuzzybytes:matrix.orgFuzzyByteSDid they at least let some independent researchers audit it?
19:18:47@keelobaud:matrix.orgkeelobaud joined the room.
21:38:01@Gaduc:matrix.orgGaduc joined the room.
3 Apr 2020
05:42:13@davio:matrix.orgdavio joined the room.
06:58:06@helpmyself:halogen.cityhEl[p,m0mey changed their profile picture.
08:43:07@Quiark:matrix.orgQuiarkCan a login token to Office365/Azure that is generated for MS Teams on mobile be stolen and reused to access Azure Portal or other application?
08:43:47@Quiark:matrix.orgQuiarkWhat would be a good place to ask this question?
09:23:38@carpetwhale:matrix.org@carpetwhale:matrix.org left the room.
09:28:24@dud1337:chat.138.iodud1337I guess a system administrators chat? let me know if you find out the answer
16:42:17@h4ck-club:matrix.orgedge563 joined the room.
18:09:33@suiluj:matrix.orgneiluj joined the room.
20:17:48@TomasZemek:matrix.orgTomasZemek joined the room.
20:22:07@a1n:matrix.orga1n joined the room.
21:13:49@a1n:matrix.orga1n
In reply to @Quiark:matrix.org
Can a login token to Office365/Azure that is generated for MS Teams on mobile be stolen and reused to access Azure Portal or other application?
I would hope the answer is no, but it should be easy enough to test. Which session token are you referring to as there are several.
4 Apr 2020
08:07:28@Quiark:matrix.orgQuiarkwell, any of them I think it's not that easy to test, presumably they'll also detect if the token is being used from the same device so you want to try bypassing that to test. ..
12:20:24@test:converser.eutest joined the room.
15:37:52@superposition:anonlabs.orgsuperposition joined the room.
15:59:54@mad05:matrix.orgmad05 joined the room.
16:57:07@canoodle:matrix.orgcanoodle joined the room.

There are no newer messages yet.


Back to Room List