this post was submitted on 29 Aug 2024
400 points (97.8% liked)

Technology

60070 readers
3415 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] jqubed@lemmy.world 110 points 3 months ago (2 children)

This whole thing is horrifying, but the last paragraph is especially disturbing:

Since Herrera himself has a young daughter, and since there are "six children living within his fourplex alone" on Joint Base Elmendorf-Richardson, the government has asked a judge not to release Herrera on bail before his trial.

Even more disturbing is it said he was also producing content.

load more comments (2 replies)
[–] Eggyhead@fedia.io 96 points 3 months ago (2 children)

Does this go to show that authorities needing backdoors to everything in order to do their jobs is actually kind of nonsense?

[–] pop@lemmy.ml 63 points 3 months ago (4 children)

The article is exaggerating the guy's setup way too much. Opsec doesn't end at the application level... The OS (the most popular being in bed with US), ISP, tor nodes, Honeypot VPNs, so on and so on could leave a trail.

Using telegram public groups and obfuscating a calculator as a password protection layer is hillbilly level of security.

And i'm glad these fuckos don't have the knowledge to go beyond App developers marketing.

load more comments (4 replies)
[–] Saledovil@sh.itjust.works 37 points 3 months ago (1 children)

Yeah, it does. Perfect opsec is impossible even with encryption.

[–] Appoxo@lemmy.dbzer0.com 68 points 3 months ago* (last edited 3 months ago) (3 children)

Heard about a guy doing insane opsec when selling on the dark web (darknet diaries podcast).
In the end he got busted because a trusted member if his operation got lazy and ignored his rules

Edit: This guy was essentially
Leeching internet via a directional antenna from a neighbour that was significantly away
Not allowing any visitor in with a cell. You had to keep it outside
All drug related actions are done in a cleaned down room.
Tripple sealing dark marketplace orders, wiping everything down with corrosive fluids to destroy any sort of dna material
Not going to the same post office in (I believe 6 months) and only sending of 3-6 shipments at once

I hope I got it correctly. Please go listen to the episode: https://darknetdiaries.com/episode/132/

[–] mlg@lemmy.world 35 points 3 months ago (2 children)

Reminds me of the lulzsec leader dude who exposed himself by logging into IRC once without tor on.

Then he folded instantly and became an informant for the FBI to stay out of jail lol.

In the end its really about tradeoffs. You can't be an expert in everything so you need a team if you want to do anything big, but Cyber criminals are still criminals. They don't trust each other which is what ultimately leads to their downfall even if they do all the implementation and tech part right.

[–] barsoap@lemm.ee 18 points 3 months ago* (last edited 3 months ago) (10 children)

Some German guy got got for logging into IRC via encrypted wifi, the cops did some war driving and correlated timing of traffic spikes with IRC messages until they had a profile with better hit probability than a DNA match.

The best thing about that? They didn't even need a search warrant as our genius was broadcasting the side-channel to the whole neighbourhood.

load more comments (10 replies)
load more comments (1 replies)
[–] Clent@lemmy.world 9 points 3 months ago

That's sounds mostly correct.

His relative also admitted their involvement and flipped on him which destroyed the narrow avenue he had to throw out the original evidence for the warrant.

Of course we only ever hear the cases of people who get caught. If he relative hadn't gotten lazy he may never have been caught.

The lesson there is not to involve other people.

load more comments (1 replies)
[–] catloaf@lemm.ee 65 points 3 months ago* (last edited 3 months ago) (5 children)

The Ars article seems to suggest that they were able to crack his phones pretty easily, which is a bit scary. I don't see anything about a computer.

Although it doesn't appear he was actually using any encryption apps to store material; rather, he used a fake calculator app as password protection. Obviously not the brightest bulb in the drawer.

[–] SnotFlickerman@lemmy.blahaj.zone 64 points 3 months ago (1 children)

The material was allegedly stored behind password protection on his phone(s) but also on Mega and on Telegram, where Herrera is said to have "created his own public Telegram group to store his CSAM." He also joined "multiple CSAM-related Enigma groups" and frequented dark websites with taglines like "The Only Child Porn Site you need!"

My guess would honestly be Telegram. For starters, they aren't end-to-end encrypted by default, you have to turn it on. The only end-to-end encryption that Telegram offers is their "secret chats" which are only available between two users. Groups are not encrypted.

[–] theterrasque@infosec.pub 19 points 3 months ago (1 children)

So telegram's delusional propaganda did something good for once?

load more comments (1 replies)
[–] AceSLS@ani.social 31 points 3 months ago

The Ars article seems to suggest that they were able to crack his phones pretty easily

Android uses data at rest encryption, which isn't really useful without a lockscreen PIN/password since data gets decrypted after you unlock your screen the first time after each boot

Although it doesn't appear he was actually using any encryption apps to store material; rather, he used a fake calculator app as password protection. Obviously not the brightest bulb in the drawer.

Agreed, he probably felt safe enough "hiding" the files. Definitely not the sharpest tool in the shed, which is great because fuck this guy

[–] chimera@lemm.ee 18 points 3 months ago (3 children)

I honestly don't think he really had any opsec apart from those few applications, look at what tools he was using, what a joke. Fake calculator app to store files are great to protect from your parents, not the FBI.

He was clearly using Android and I bet he was using the stock rom, kyc sim card, and not even a vpn behind tor.

Don’t get me wrong, I’m very happy and relieved he was caught, but if he had done serious research and did a better opsec, it wouldn’t have been so easy for the authorities to get him

load more comments (3 replies)
load more comments (2 replies)
[–] tatterdemalion@programming.dev 51 points 3 months ago* (last edited 3 months ago) (10 children)

It seems irrelevant whether this person is using encrypted channels if they failed to maintain anonymity. If they distributed material and leaked any identifying info (e.g. IP address), then it would be trivial for investigators or CIs to track them down.

[–] ours@lemmy.world 18 points 3 months ago (1 children)

Likely, data may have been encrypted but he may have leaked compromising metadata. Even more likely it was bad operation security linking a personal identity to his anonymous persona.

I'm always thankful for incompetent criminals.

load more comments (1 replies)
[–] Trainguyrom@reddthat.com 15 points 3 months ago (1 children)

In the list of apps he was using I don't see any mention of a VPN. How much you want to bet he raw dogged it with encrypted apps over the clearnet so it was trivial to leak his real IP address

load more comments (1 replies)
[–] Clent@lemmy.world 12 points 3 months ago

It sounds like he created material, not only AI but actual children then distributed it. The tools to track down the creators of CASM is only getting better.

A single legal image of any of those children posted to social media is going to allow algorithms to make the match and its routine detective work from there.

It only takes one child to talk. No amount of encryption is going to stop that.

load more comments (7 replies)
[–] tilefan@lemm.ee 29 points 3 months ago (6 children)

saw a headline the other day about the gov't tracking people on tor using Google ads

[–] linearchaos@lemmy.world 29 points 3 months ago (5 children)

I'm still not entirely convinced that tor is as protected as people think it is.

There's only something like 6,000 exit nodes. It really wouldn't be that much money for the government to run thousands of them. If you monitor enough exit nodes and enough relays, you can start to statistically tie connections back together with timing analysis.

I don't know this to be the case for sure but I can't imagine the government hasn't pushed towards breaking the security and identifiability of the tor network

[–] Snowclone@lemmy.world 14 points 3 months ago (3 children)

If you read a lot of news, it's really clear Tor isn't protecting anyone from the FBI. It's about as effective as using limewire at this point. Which also, the reporting makes it pretty clear it's not effective to hide criminal acts in the least. But it's pretty great abusers think it's effective so they get caught.

load more comments (3 replies)
[–] Chozo@fedia.io 13 points 3 months ago

I've suspected Tor of being heavily compromised for a while now. It's already known that many onion sites are government honeypots, with sites being taken over rather frequently, sometimes without triggering the canary. While it's better than nothing in some situations, I don't think it can be relied upon for true anonymity anymore.

load more comments (3 replies)
load more comments (5 replies)
[–] chimera@lemm.ee 14 points 3 months ago

It is also because of people like him that laws like Going Dark become plausible to the eyes of the politicians and the masses

[–] YurkshireLad@lemmy.ca 12 points 3 months ago (12 children)

Prison is too good for anyone who keeps child sex abuse images.

load more comments (12 replies)
[–] crawancon@lemm.ee 10 points 3 months ago

the fool! you can't use ROT-104 encryption against 4 cores!

load more comments
view more: next ›