61
submitted 4 months ago* (last edited 4 months ago) by zaknenou@lemmy.dbzer0.com to c/piracy@lemmy.dbzer0.com

I heard that it is possible to inject video containers with malware. I also heard malware is rampant on 1337x. And I don't have an antivirus to scan files for the moment cuz I'm on Linux, also it would be too much for me to upload the movie to virustotal.

I found a release that suits my need for the movie I'm looking for, but I don't know if I can trust this uploader (TGxGoodies). the number of seeders is over 120 for the movie.
the reason I'm reluctant is that a very active uploader on 1337x: IGGGAMESCOM is labeled "Vip Uploader" despite a simple search on reddit shows that there are victims for their malware-injected uploads.

top 30 comments
sorted by: hot top controversial new old
[-] catloaf@lemm.ee 46 points 4 months ago

A malicious video file exploiting your video player is possible, but extremely unlikely. Keep your system up to date and you'll be fine.

[-] state_electrician@discuss.tchncs.de 16 points 4 months ago

This. And TGxGoodies is one of the biggest uploaders on 1337x, I'd say they can be trusted. I prefer them to most others, because they keep good quality on low file sizes.

[-] renard_roux@beehaw.org 9 points 4 months ago

I feel the same way about MeGusta — x265, always great size/quality ratio.

[-] zaknenou@lemmy.dbzer0.com 4 points 4 months ago

any youtube video or blog post explanation you advice ? I'd like to know more

[-] priapus@sh.itjust.works 8 points 4 months ago* (last edited 4 months ago)

I don't really have a YouTube video or blog post on hand to explain it, but I do have a degree in cybersecurity. Putting a malicious executable in a video is not a simple task. The most likely way for this to occur would require a vulnerability in the video player you are using that allows for code execution. If your system is up to date, it's unlikely the video player you're using is going to have a known vulnerability that allows this. If someone does have knowledge of a vulnerability like this that is not publicly known, it's very unlikely random 1337x users will be their target.

Something I will recommend is if you are using Windows, make sure you do not have file extensions hidden in File Explorer, because then someone could trick you by simply naming an executable with .exe at the end. These types of tricks are more important for the average user to be cautious about than attacks utilizing steganography.

[-] zaknenou@lemmy.dbzer0.com 3 points 4 months ago

yeah I heard about that classic trick it was used in that "I Love you" virus. thank you

[-] Tabitha@hexbear.net 1 points 4 months ago

Which Linux did you install? How old is your installation? Do you have auto update enabled or do you regularly install updates?

[-] zaknenou@lemmy.dbzer0.com 2 points 4 months ago

I have Ubuntu 22.04, it has been almost a year. I don't search for updates, I don't know if it is auto-updating

[-] lord_ryvan@ttrpg.network 2 points 4 months ago

Ubuntu 22.04 does support automatic updates by default.

To check if Ubuntu 22.04 is set to auto-update, you can follow these steps:

  1. Open the "Software & Updates" application. You can do this by searching for it in the Ubuntu Dash or by pressing Super key (Windows key) and typing "Software & Updates".
  2. In the "Software & Updates" window, go to the "Updates" tab.
  3. Look for the option that says "Automatically check for updates". If this option is checked, it means Ubuntu is set to automatically check for updates.
  4. You can also check the frequency of updates by looking at the drop-down menu next to "Automatically check for updates". Here you can set how often Ubuntu should check for updates.
  5. Additionally, you can check the "Install updates from" section to see where updates are being fetched from. By default, it should be set to the main Ubuntu repositories.

By following these steps, you can verify if Ubuntu 22.04 is configured to auto-update.

(source: I asked DuckDuckGo AI Chat, I don't have links for you but this seems correct from when I used Ubuntu Gnome)

[-] zaknenou@lemmy.dbzer0.com 2 points 4 months ago

TIL that DuckDuckGi has AI Chat, thank you !

[-] cerement@slrpnk.net 40 points 4 months ago

if you download Boy and the Heron but end up watching Fight Club, you know they can’t be trusted

[-] n3m37h@sh.itjust.works 1 points 4 months ago

Oh, you know what they saw, a big ol' penis.....

[-] Mountain_Mike_420@lemmy.ml 16 points 4 months ago

lol. What? You have a link to article or some proof of a video file as an attack vector for a hacker? Video files aren’t executable and even if there was a way to cause some type of malware to be ran from it the file it would have to be coded explicitly for the video player/system running it.

My guess that if this was a legit attack vector that all the latest movies and big popular tv shows would be targeted and we would hear a lot of stories about it.

You’re on Linux which gives you a huge leg up on not being target by a virus. Just chill and watch your movie.

[-] OfficerBribe@lemm.ee 8 points 4 months ago

the file it would have to be coded explicitly for the video player/system running it.

That's the method. Rare thing I believe and nothing to worry with patched software. Found 1 example.

[-] zaknenou@lemmy.dbzer0.com 1 points 4 months ago

I saw it on youtube and stackexchange

[-] prole@lemmy.blahaj.zone 1 points 4 months ago* (last edited 4 months ago)

I think .mkv files can theoretically hold viral payloads... Could be wrong but I feel like I remember reading that somewhere.

[-] Tyr_Raidho_Othala@reddthat.com 14 points 4 months ago

IGG-Games is uploading csrinru cracked games on their own website. In the past they have distributed malware on this way.

The admin is not based and a fucking mf

[-] DAMunzy@lemmy.dbzer0.com 11 points 4 months ago* (last edited 4 months ago)
  1. You're either going to trust random people on the Internet on 1337x.to or here on Lemmy instances. It's all a crapshoot.
  2. The people complaining about 1337x.to and IGGGAMES seem to be super purists or unable to grasp that IGGGAMES is made up of many people and certain people in the past (years ago) did shady (shadier) things by uploading games with unwanted extras (crypto miner and other things).
  3. There are plenty of people that like 1337x.to and feel it's safe. Safe enough. Nothing is safe, even companies will slip in malware if they think they can get away with it. There is no safe computer.
  4. Comments on 1337x.to are rare and rarely have anything important to say. At least there is no advertisement spam comments.
[-] Tabitha@hexbear.net 10 points 4 months ago

I wouldn't worry about this unless it's a game or software, and even then, the non-pirated version probably has DRM that's somehow worse than malware.

Now if your video file ends up being a password protected rar and you don't already know the password, just delete it and find another video torrent.

[-] an0nym0us@lemmy.dbzer0.com 9 points 4 months ago

Thanks for reminding me of this possibility.

Here’s how I plan to solve it on my seedbox:

In the bash script I use to download and rename files using filebot, I added an mkvalidator step at the beginning. If the file doesn’t pass the check, it doesn’t go onto the next step.

mkvalidator

mkvalidator is a simple command line tool to verify Matroska and WebM files for spec conformance. It checks the various bogus or missing key elements against the EBML DocType version of the file and reports the errors/warnings in the command line.

[-] zaknenou@lemmy.dbzer0.com 5 points 4 months ago

so it is impossible to be infected from an MKV or webm if I use this to scan the files ??

[-] an0nym0us@lemmy.dbzer0.com 1 points 4 months ago* (last edited 4 months ago)

Good question! Perhaps not. Someone should test my idea with a known infected mkv file.

Get back to me if you do.

[-] dumblederp@aussie.zone 3 points 4 months ago

I only use vlc or notepad to open things from torrent sites. I don't pirate games or software anymore.

[-] bblfrnz@beehaw.org 2 points 4 months ago

You are safe pirating either games or software, if you know what you are doing. Many apps require only a key, so, you just download an official app and find the key for it. Many games has gog versions, which are drm-free, or if it's a steam version, you download clean steam files and use some steam emulators. That covers 99% of all the games. Game piracy has never been that easy and comfortable like it happens to be nowadays.

[-] communism@lemmy.ml 3 points 4 months ago

Does the torrent listing have any comments? Ofc positive comments doesn't guarantee it's not malware but I wouldn't chance it if there's no comments

[-] zaknenou@lemmy.dbzer0.com 4 points 4 months ago* (last edited 4 months ago)

0 comments
700 downloads
125 seeders

[-] Squiddick17@lemm.ee 3 points 4 months ago

I thought it was understood that 1337 is about as fucked as the bay? Private Russian trackers are universally the way to go, but there's still better resources outside of that on the reddit megathread

[-] bktheman@awful.systems 7 points 4 months ago

Which thread? I'm casual, I don't have time or energy to keep a good ratio. I seed plenty, but it seems like private trackers, for all their benefits, would also be a chore. I've looked into them before but never got past needing an invite.

At this point in my life I'm not concerned about the highest bitrate. I use yify for all my movies, and 1337x for TV shows, grab them in full seasons as I need them.

I'm open to new ideas, though, if it's not too hard to get started.

[-] Squiddick17@lemm.ee 1 points 4 months ago

It's really not a chore if you don't pick super exclusive trackers. RuTracker, if I remember correctly, doesn't really have requirements to join, and they don't even monitor ratios anymore. All files should come with English tracks, and your browser can already auto-translate the site for you. Even the ones that do require seeding give you a grace period to build it up, and all you have to do is set an automatic ratio goal of 100% or so on your torrent client.

[-] sahuaro@programming.dev 2 points 4 months ago

I have downloaded several TV shows and movies from this uploader and had no issues AFAIK. But make sure to scan this before opening with any player.

this post was submitted on 08 Jul 2024
61 points (96.9% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54746 readers
750 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 2 years ago
MODERATORS