BlueHammer abuses Windows Defender's update process to gain SYSTEM access (hackingpassion.com)

by BullsEye0 11 comments 28 points
Read article View on HN

11 comments

[−] zx8080 34d ago
Breaking text selection is a VERY user-hostile web development trick. Thank you, seriously.
[−] stingraycharles 34d ago
This website is one of the most user hostile I’ve encountered in a long time. On mobile it’s miserable.
[−] duskdozer 34d ago
Is it meant to be ironic? It's also including a smooth-scroll.js, clipboard.js (No Flash. No frameworks. Just 3kb gzipped)
[−] smcin 34d ago
Interesting but your site renders very badly on mobile; I have to scroll down through four screenfuls of ads or blank padding before I see a single paragraph of article, then more blank page. It is visually indistinguishable from an adfarm. Could you fix that?
[−] PeterWhittaker 34d ago
Site renders great for me, iOS Safari with blockers; text selection works fine.

Yeah, I know, karma hit coming, but the other comments are so counter to my experience (I quite like the page and content) that I could not not comment.

[−] dist-epoch 34d ago
If native code is running on your Windows (as opposed to JavaScript in the browser sandbox), you've already lost.

It can steal your cookies and browser saved passwords, it can upload your photos or delete them.

Privilege escalation to SYSTEM is the least of your worries.

[−] redsocksfan45 34d ago
[dead]