this post was submitted on 28 Oct 2024
57 points (98.3% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54716 readers
339 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
all 11 comments
sorted by: hot top controversial new old
[–] [email protected] 23 points 3 weeks ago

Hmmm. I'd bet mastering, because if someone's found a way to circumvent KDMs, there is going to be a lot of pants shat, and not just in cinema - it would mean cert based cryptographic keys are fucked

[–] [email protected] 16 points 3 weeks ago (1 children)

Wild conspiracy theory time: could be related to the fortinet exploit. I know the TPN have been losing their shit over that one, and it's widely used. Would have to have a lot of moving pieces lining up, and people explicitly wanting to break into mastering houses to steal movies, which is a bit over the goddamn top, but hey, fun times.

[–] [email protected] 3 points 3 weeks ago (1 children)

fortinet exploit

TPN

Got more info on this?

[–] [email protected] 5 points 3 weeks ago* (last edited 3 weeks ago)

A critical vulnerability (CVE-2024-47575) has been discovered in Fortinet's FortiManager, and it is currently being actively exploited. This vulnerability allows attackers to bypass API authentication, enabling them to execute commands remotely and compromise managed devices. FortiManager is commonly used by organizations to manage multiple FortiGate firewalls, making this vulnerability especially dangerous for enterprises and Managed Service Providers (MSPs).

TPN = Trusted Partner Network. Basically a big pile of wank that offers to make sure anyone handling content pretends to adhere to good IT practices and security so shit doesn't get stolen