Ever wondered how hackers intercept your data mid-transmission? In this episode, we break down Man-in-the-Middle (MITM) attacks — how they work, the signs to watch for, and the best ways to protect your sensitive information.
#CyberSecurity #MITMAttack #DataProtection #CyberThreats #NetworkSecurity #InfoSec #Hackers #OnlineSafety #TechPodcast
@keithzg @timrichards @mpjgregoire i can't tell whether the OP is being ironic but its sure sounds like he isn't... Australia Post is most definately privatised, contrary to what the OP suggests.
Oh and its website is basically mitm attacked by amazon cloudfront, lol... the encryption is done in the usa and amazon sees EVERYTHING you do on #auspost (EDIT .com.au)
You can check this yourself, just try to access the site with a privacy-respecting browser like #TorBrowser, be sure to use safest mode.
If this is news to you, Tim, pls share to compensate for the misinfo, cheers
i was helping someone recently who didnt know about the problems associated with #cloudflare and stumbled across this.
its from the @torproject people and no longer available on the internet. it goes into great detail the problem with cloudflare from the perspective of #captchas but doesn't mention the broader threat that they prose as a global mitm attack.
why?
DeepSec 2023 Talk: I Just Wanted to Learn the Water Temperature… – Imre Rad
The story started as a hobby project: I was about to retrieve the current temperature of a non-smart water heater in my apartment. To not void the warranty, I was looking for a non-intrusive solution that purely relies on o
https://blog.deepsec.net/deepsec-2023-talk-i-just-wanted-to-learn-the-water-temperature-imre-rad/
#Conference #CloudControlledDevices #DeepSec2023 #IoTSecurity #MitMAttack #SmartHome #Talk
@confluency
POTENTIAL #SECURITY THREAT: The above website, #phanpyDotSocial is #CloudGlare and may be a #socialEngineering attack on #fediverse users to open them up to #accountTakeover.
If the above website asks one to login to ones #mastodon instance with their password then its a CloudGlare #phishing website/#honeypot.
We will not access on ethical grounds.
Tagging some boosters to warn them @njoseph @kkremitzki @michelin
#MITMAttack #MITMaaS #ClOudFlAre #fediverseAttack #cyberAttack
Our namesake, #DickSmith has rallied heavily against #aggregatorSites for #travel, like #Trivago, #TripAdvisor and #AirBnB.
Now imagine ENTIRE INTERNET AGGREGATION!
Someone ought contact Dick and tell him about #CloudFlare, #Amazon and #Akamai.
Forget buying a little ad in a corner of a #newspaper. He might need to buy the entire newspaper for a week to cover this.
We doubt even he has the funds to do this.
#entireInternetAggregation #internetAggregation #mITMAttack #mitMaaS #encryptionScam
The #IndependentAustralia.net publication is so independent it goes through US #LiteSpeed servers. Lol
Truthfully we had them on a higher pedestal than most #publications, but lost respect for them when we saw they allowed themselves to be #MITMd.
@StartpageSearch
There are two caveats to the above to be mindful of.
1. Unfortunately CloudFlare is used by #Visa last we checked but Visa have a bespoke setup that negates the need for the aforementioned '#CFRay'.
2. Be mindful that the #UBlock addon fetches all its #blockLists from CloudFlare. May be reason for not blocking or warning of the #MITMAttack, and why BCMA #addon is neccessary.
Don't trust BCMA.xpi? — Convert the #XPI to a #ZIP file and read the code.
https://notabug.org/dCF/deCloudflare/src/master/subfiles/about.bcma.md
@mcg
Hello Dear Matthew,
As we see (via a quick Ctrl+Shift+E in TorBrowser to bring up the NetworkTab), Brave goes through not only Amazon servers but through Cloudfront which is a type of MITM Attack like what Cloudflare has been conducting by stealth circa 2009.
Such a #MITMAttack makes Brave an Amazon asset, and thus not ethical in any way.
We are delighted to inform that Mozilla recently (finally, bless) approved the #BCMA Add-on by https://crimeflare.eu.org!
FIND IT HERE:
https://addons.mozilla.org/en-US/firefox/addon/stopcloudflare/
ADD-ON XPI FILE (repo also linked to on above page):
https://git.disroot.org/dCF/deCloudflare/src/branch/master/addons/releases
REPO README
https://git.disroot.org/dCF/deCloudflare/src/branch/master/subfiles/about.bcma.md
Though its a small step, we think it represents a watershed moment for the movement against the #MITMAttack on the web.
Dear sweet Jesus,
Australia's #govtServices now all go through #Akamai. That #USCorporation that rose alongside its partnership with #Microsoft.
Not only that, its locking select individuals out from accessing said govt services. Like the #TaxOffice and #SocialServices.
Was nice knowing you, #Australia.
#humanServices #australiaJustDied #clientStateOfUSA #deleteAkamai #reverseProxy #MITMAttack
ITS NOT ABOUT their javascript — its about #surveillance.
Leading ppl to a #CloudFlare'd site, means cf (etc) learn how to target them. If they donate to or contact the website owners, cloudFlare gets a front row seat to the action *before even the website owners*.
It can lead to them being denied #onlineBanking as we revealed yesterday.
Worst part is, 99.9% of the time #website owners and #contributors are *completely unaware* their site is #MITMAttack'd, because their #ISP did the switch.
RT @MitiGator
MASS LINE: The internet is where you can express ideas freely (even anonymously with a clever pen-name!)... it's a *disaster* for those in power.
CLASS LINE: Your internet experience is designed by us to divert your attention while we steal from you. No, we won't be discussing Cloudflare — that's part of the #psyop!
@MitiGator post_this
Hi Fedizens, you may remember me as #altLink — yelling from the corner of the avatar.
In a #Kafkaesque moment of quality frustration I morphed into #MitiGator the #MITM Prevention Alligator. As always, you can follow me and I'll follow you, to let you know when you accidentally toot a dodgy website.
DID YOU KNOW I don't just #Cloudflare-warn? Over the next days I'll share some nice things I can do.
Together, we can 'snap back' against the #MITMAttack!
@bojkotiMalbona
We realised too late when @MitiGator went off, yes.
Isn't it sad when a #permicultureSite, of all things, somehow funds itself #verticallyIntegrated into the #MITMAttack.
We unboosted obviously.
@strypey
THE GUARDIAN NAME-CHANGE
The Guardian is set to rename themselves, The Amazon Guardian, to pay homage to their MITM Attacker (—we mean: server).
#extortion #TheGuardian #satire #MITMAttack #Amazon #monopoly #duopoly
What do you do when the #politicalParty that you like is behind #Cloudflare?
We have that problem, the party is #SustainableAustralia. They have great policies and a plan to stop #overdevelopment and end corruption. Can they though, when they have what we think any reasonable person would call #internetCancer? An effective #MITMAttack on their interface with the public.
When describing the ongoing #MITMAttack on #theInternet by the likes of #Amazon, #Cloudflare, #Microsoft, and #Akamai which 'backronym' (back acronym) might you prefer?
• Mafia in the Middle
• Megacorporation in the Middle
• Monopolist in the Middle
• Monopoly in the Middle
• (something else…?)
Please justify any given answer.
#takingTheInternetPrivate #reverseProxy #internetCancer #MITM #mafia #extortion #megaCorporations #dotCons #monopoly #monopolists #useI2P #useTor
