I heard that it is possible to inject video containers with malware. I also heard malware is rampant on 1337x. And I don’t have an antivirus to scan files for the moment cuz I’m on Linux, also it would be too much for me to upload the movie to virustotal.

I found a release that suits my need for the movie I’m looking for, but I don’t know if I can trust this uploader (TGxGoodies). the number of seeders is over 120 for the movie.
the reason I’m reluctant is that a very active uploader on 1337x: IGGGAMESCOM is labeled “Vip Uploader” despite a simple search on reddit shows that there are victims for their malware-injected uploads.

44 points

A malicious video file exploiting your video player is possible, but extremely unlikely. Keep your system up to date and you’ll be fine.

permalink
report
reply
16 points

This. And TGxGoodies is one of the biggest uploaders on 1337x, I’d say they can be trusted. I prefer them to most others, because they keep good quality on low file sizes.

permalink
report
parent
reply
9 points

I feel the same way about MeGusta — x265, always great size/quality ratio.

permalink
report
parent
reply
3 points

any youtube video or blog post explanation you advice ? I’d like to know more

permalink
report
parent
reply
8 points
*

I don’t really have a YouTube video or blog post on hand to explain it, but I do have a degree in cybersecurity. Putting a malicious executable in a video is not a simple task. The most likely way for this to occur would require a vulnerability in the video player you are using that allows for code execution. If your system is up to date, it’s unlikely the video player you’re using is going to have a known vulnerability that allows this. If someone does have knowledge of a vulnerability like this that is not publicly known, it’s very unlikely random 1337x users will be their target.

Something I will recommend is if you are using Windows, make sure you do not have file extensions hidden in File Explorer, because then someone could trick you by simply naming an executable with .exe at the end. These types of tricks are more important for the average user to be cautious about than attacks utilizing steganography.

permalink
report
parent
reply
3 points

yeah I heard about that classic trick it was used in that “I Love you” virus. thank you

permalink
report
parent
reply
39 points

if you download Boy and the Heron but end up watching Fight Club, you know they can’t be trusted

permalink
report
reply
1 point

Oh, you know what they saw, a big ol’ penis…

permalink
report
parent
reply
14 points

lol. What? You have a link to article or some proof of a video file as an attack vector for a hacker? Video files aren’t executable and even if there was a way to cause some type of malware to be ran from it the file it would have to be coded explicitly for the video player/system running it.

My guess that if this was a legit attack vector that all the latest movies and big popular tv shows would be targeted and we would hear a lot of stories about it.

You’re on Linux which gives you a huge leg up on not being target by a virus. Just chill and watch your movie.

permalink
report
reply
8 points

the file it would have to be coded explicitly for the video player/system running it.

That’s the method. Rare thing I believe and nothing to worry with patched software. Found 1 example.

permalink
report
parent
reply
1 point
*

I think .mkv files can theoretically hold viral payloads… Could be wrong but I feel like I remember reading that somewhere.

permalink
report
parent
reply
1 point

I saw it on youtube and stackexchange

permalink
report
parent
reply
12 points

IGG-Games is uploading csrinru cracked games on their own website. In the past they have distributed malware on this way.

The admin is not based and a fucking mf

permalink
report
reply
9 points
*
Removed by mod
permalink
report
reply
5 points

so it is impossible to be infected from an MKV or webm if I use this to scan the files ??

permalink
report
parent
reply
1 point
*
Removed by mod
permalink
report
parent
reply

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

!piracy@lemmy.dbzer0.com

Create post
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don’t request invites, trade, sell, or self-promote

3. Don’t request or link to specific pirated titles, including DMs

4. Don’t submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-fi Liberapay

Community stats

  • 3.5K

    Monthly active users

  • 1.9K

    Posts

  • 16K

    Comments