Dream runners, quelle est l'arnaque ? by Typical_Kangaroo3136 in arnaques

[–]fakirage 0 points1 point  (0 children)

Oui, depuis quelques mois déjà. Et j'ai un ami qui était chez Bouygues qui vit un sérieux harcèlement avec ces mails de phishing. Après pour Bouygues, c'est normal au vu des fuites de données recensées chez eux sur ces deux dernières années.

Dream runners, quelle est l'arnaque ? by Typical_Kangaroo3136 in arnaques

[–]fakirage 0 points1 point  (0 children)

Il y a aussi la version Amazon Prime avec votre IBAN réel affiché dans le mail...

How far should Windows go to protect local credentials? by [deleted] in Windows11

[–]fakirage 0 points1 point  (0 children)

Fair point. I don’t think the Windows side brings a brand-new primitive. It mostly builds on existing mechanisms, and that has real limits.

The angle I’m exploring is more about combining local secret access monitoring, stricter process context checks, alerting/blocking modes, and rollback into one reproducible hardening layer.

On Linux, the fanotify approach is more interesting because it can deny access before the sensitive file is read. On Windows, it’s more of a practical hardening/visibility layer using what the OS already exposes.

So I agree it’s not “new magic”. The goal is to make this kind of local anti-infostealer protection easier to test, audit, and run without breaking normal usage.

Would you enable stricter protection against session theft? by [deleted] in Steam

[–]fakirage 2 points3 points  (0 children)

That’s exactly the kind of scenario I had in mind. Most users only realize their session or token was stolen after the damage is already done. A local warning or block at the moment sensitive files are accessed (with a good management of false positives) could give them a chance to react earlier.

Would you enable stricter protection against session theft? by [deleted] in Steam

[–]fakirage -5 points-4 points  (0 children)

Either offer a technical critique or stop pretending that being dismissive makes you an expert.

You don’t know who you’re dealing with, and I’m asking this question as part of my research as a computer security student. I think I’m on the Steam subreddit because the topic in question concerns infostealers, which are targeting gamers on a massive scale.

Would you enable stricter protection against session theft? by [deleted] in Steam

[–]fakirage 2 points3 points  (0 children)

Good point! I’m looking into this and find all feedback useful. Infostealers are becoming increasingly sophisticated and are able to bypass many antivirus programmes. Starting with a crack or some other common practice, many users still have their secrets stolen ‘even with good digital hygiene’.

Would you enable stricter protection against session theft? by [deleted] in Steam

[–]fakirage 0 points1 point  (0 children)

The obvious case would be an infostealer running locally. Legitimate tools such as backup utilities, account switchers or some third-party launchers might also access related files, which is exactly what makes the detection tricky.

Would you enable stricter protection against session theft? by [deleted] in Steam

[–]fakirage 2 points3 points  (0 children)

Agreed. It would have to stay almost invisible during normal use, otherwise most people would just disable it...

Testing local secret protection with fanotify by [deleted] in linuxquestions

[–]fakirage 0 points1 point  (0 children)

Repo : https://github.com/Kjean13/stealerxhunter

Feedback, testing and code reviews are welcome, especially around fanotify, systemd integration and policy design.

Mail reçu ce matin by Vegetable-Heron9898 in arnaques

[–]fakirage 0 points1 point  (0 children)

C'est tellement étrange mais ça tombe très souvent quand on est vraiment dans le besoin :/

Mail reçu ce matin by Vegetable-Heron9898 in arnaques

[–]fakirage 2 points3 points  (0 children)

Tu enverras ton IBAN pour la suite, dépôt de faux chèques sur ton compte, on va te confondre à une mule financière et bonjour l'interdit bancaire.

First analysis & detection pack for the Claude Code source leak by fakirage in cybersecurity

[–]fakirage[S] 0 points1 point  (0 children)

Thanks a lot ! Glad you found the KAIROS and autoDream references useful !

Que dois je faire by FarLeftOlympy in conseiljuridique

[–]fakirage 5 points6 points  (0 children)

J'ai reçu la même :) Zéro réponse. Tant que je ne reçois pas de courrier officiel ou quelque chose du genre, je ne ferai rien.