EEVblog > Other Blogs
Linus Tech Tips' channels hacked this morning, promoting crypto scams
Jackster:
This morning, the LTT main channel and its sister channels were hacked.
The main channel was renamed and rebadged as a Tesla channel and then went live with an Elon Musk live stream featuring a few other people with links to some crypto crap.
The main channel was taken down shortly after and remains down.
Pretty interesting to see such a large network of channels hacked.
What are we thinking? Youtube 2FA flaw? Staff device hacked? Inside job?
Black Phoenix:
I remember some years ago on a video Linus telling that they had at the beginning an android phone on the server room in the new building that everyone would connect remotely (via Anydesk or something similar) for 2FA needs. But they had already finished using such workaround and now was implemented in a different way.
thm_w:
Yeah its interesting, await the explanation.
Apparently there is malware specifically targeting youtube gamers: https://www.bleepingcomputer.com/news/security/new-malware-bundle-self-spreads-through-youtube-gaming-videos/
Uses existing cookie to log in then upload its own videos. But I don't know if that lets you lock out the existing user account out.
Jackster:
Dave called it.
Session token based attack via sponsor attachment.
https://youtu.be/yGXaAWbzl5A
SiliconWizard:
This crypto scam impersonating Musk has been going on for months.
I'm really curious to know who is behind it.
Navigation
[0] Message Index
[#] Next page
Go to full version