A
@AAKL @therecord_media Telegram was allowed because it served their purposes. As they need to further control the population, they need an app that does more than allow them to listen in on every conversation.
They want that, and what the Chinese government has: your biometrics, financial transactions, location data, news consumption. E-ve-ry-thing.
Thus, the WeChat model.
@jkb @pheonix That seems to be the case, although the weakness is in Microsoft Notepad incorrectly handling “an unverified protocol”, not in something the user then has to do or interact with. Besides clicking a link.
This reads to me like an URI protocol handling issue.
And that functionality is not something they’d have to reinvent or vibe code.
You know, with their proprietary plain text editor running on their proprietary OS, and next to their proprietary file explorer, their proprietary internet browser, their proprietary email client and proprietary network agents.
All their proprietary software handling URI protocols… RIGHT THERE.
Het scenario is in het kort denk ik:
Systemen uitzetten of grootschalig degraderen via de beheersorganisatie vanuit een statelijke actor met volledige toegang en controle over IAM en cloud van de beheersorganisatie.
Geef een onafhankelijk red team dit scenario mee en wacht een weekje.
Je kan die week gebruiken om je voor te bereiden op de explosie aan de Five stages of grief waar iedereen vervolgens doorheen gaat.
Ik zet trouwens in op veel Denial en Bargaining. Want dat is nu ook al schering en inslag.
