jsm on Nostr: No, it was the legitimate Plex. An old version of the server just had a security ...
No, it was the legitimate Plex. An old version of the server just had a security flaw. Obviously Plex patched it ages (75 versions) ago but the employee never updated for some reason. The hacker was able to exploit the flaw to log all his keystrokes with some malware.
Published at
2023-03-05 19:24:56Event JSON
{
"id": "2e08df3d39d2394b45900a5bc0d1c0ad32eaff8f2d5def0c14323cae6b63b2cb",
"pubkey": "e0339348ca6cac9708cd98e631e2f4baad534dfce870881b65aa57d30ff7253e",
"created_at": 1678044296,
"kind": 1,
"tags": [
[
"e",
"23d80a3b5a99219c7694ad03bb8020053235cdf63f074c22b935529d496e8b15"
],
[
"e",
"3667651250819e68cb2f50ef3de8a81cf5ddbdef55e49258f13951d6541db239"
],
[
"p",
"5b0e8da6fdfba663038690b37d216d8345a623cc33e111afd0f738ed7792bc54"
],
[
"p",
"bf56d95101290b1f44381266249c233a04aabb2aa91cfa6b490ee24f6cd18c50"
]
],
"content": "No, it was the legitimate Plex. An old version of the server just had a security flaw. Obviously Plex patched it ages (75 versions) ago but the employee never updated for some reason. The hacker was able to exploit the flaw to log all his keystrokes with some malware.",
"sig": "2e5c65ab2a94ef5cc066d23ced82ff002612fa93f34a75c414dc739129eca1ce66dd2fb931c50230e4ff59f143609ed6f2bc822064481031bd53b12b3fb6b3e6"
}
