Hacker Newsnew | past | comments | ask | show | jobs | submit | void-star's commentslogin

Groan…

reply


Public Linux rootkits have been around a very very long time. Nothing new here in that regard. Also Linux AV has been around almost as long…

This effort is more useful to up and coming defenders and security researchers than attackers by far.


I’m beginning to think maybe I’m the only one that read this whole thing. The firmware storage isn’t the security through obscurity problem being talked about here. The hardcoded TLS private key definitely is though. And yes, it deserves shaming… terrible practice leads to terrible outcomes. Nobody is surprised that this is coming from tp-link at this point though.


I think maybe you’re reading this wrong. Reverse-engineering blog posts like this are just a fun and instructive way of telling the story of how someone did a thing. Having written and read a bunch of these in the past myself, I found this one to be a great read!

Edit: just want to add, the “how I got the firmware” part of this is also the least interesting part of this particular story.


Probably something closer to ripgrep, if not actually ripgrep.


It’s notable and interesting this research is coming out of University of Cambridge. Cambridge Analytica spun out of academia there too? Question for folks here who may be familiar: it seems like there’s a strong connection to research (and in the case of CA, commercial application of said research) around social media manipulation and propaganda in the digital age.

Is there any six-degrees type connection to the people doing this research and those involved with the roots of CA? Not as in the same bad actors (which, tbh yes, I consider CA to have been), but as in perhaps the same department and/or professors etc.


CA was not spun out of Cambridge University. There's even a statement from the university about this: https://www.cam.ac.uk/notices/news/statement-from-the-univer...

> Cambridge Analytica has no connection or association with the University of Cambridge whatsoever.


Thanks for the clarification. I wasn’t sure if I was right about that hence the question mark.


Just want to say: Thanks! I was waiting for this article.

Thanks to Ernie Smith, to tedium.co, to HN, to community.

This is the kind of curious and intelligent response to FUD that I want to find whenever major news outlets start an insane new spin-cycle (as increasingly is the way of things in the world).

I’ll let the HN comment thread spin out (as it must), but amidst that, I just want to say that this right here is the reason I still keep coming back to this place and read all of it. So, thanks!

Great post/read!


The product reviews are pretty great sometimes. (I didn’t devise this one, just browsed into it)

https://anycrap.shop/product/usb-butt-plug

Sprocket Verified Buyer 6/24/2025 Utterly revolutionary; performs better than a whisk, truly remarkable

BartholomewP Verified Buyer 3/25/2025 Utterly indispensable during board meetings; would repurchase immediately!


Fart noise apps were the first iPhone killer app for a good long stretch in the early days, dominating the app leaderboards for at least half a year.

Yep… Humanity is… let’s face it, pretty stupid.

I, for one welcome, the latest bubble. And, with it, our new, venerable AI overlords!

Mobile^H^H^H^H^H^HAI first!!!!


This is really, well... douchey. Emptying anything I have in Coinbase asap (and yes I read the whole thing)

I wonder how likely it is for CEO roles to get taken over by a sophisticated LLM at this point. I’d wager we’d see a 20x increase in value. I use and value llms in my coding and research workflows already but to fire people for careful and slow adoption speaks very poorly to individual and company maturity.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: