@christophetd.fr on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Christophe Tafani-Dereeper

christophetd.fr

did:plc:zwlpsxw2udovqf4mbfi4ibqf

Exclusive: The backdoor inserted in v1.95.7 adds an "addToQueue" function which exfiltrates the private key through seemingly-legitimate CloudFlare headers. Calls to this function are then inserted in various places that (legitimately) access the private key. [contains quote post or other embedded content]

2024-12-03T23:47:24.962Z