this post was submitted on 25 Apr 2024
174 points (98.3% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54746 readers
250 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
all 12 comments
sorted by: hot top controversial new old
[–] GasMaskedLunatic@lemmy.dbzer0.com 96 points 7 months ago* (last edited 7 months ago) (1 children)

That fucking snitch. You're supposed to keep it private and let Microsoft figure it out themselves.

[–] antlion@lemmy.dbzer0.com 109 points 7 months ago (1 children)

On the other hand, Gowdiak has not provided the technical details of his findings to Microsoft. The researcher is displeased with the way the tech giant handled his previous PlayReady vulnerability report, saying that his work was mostly ignored. Gowdiak claims Microsoft has now requested additional information on the findings, informing him that the research may be eligible for a bug bounty reward, but the researcher says at this point he is only willing to share the information with the vendor through a commercial agreement.

[–] andrew_bidlaw@sh.itjust.works 41 points 7 months ago

They deserve this slap on the face.

[–] Rentlar@lemmy.ca 56 points 7 months ago

It's hard not to laugh when "Microsoft Windows" and "secure" are in the same sentence.

[–] Moonrise2473@feddit.it 35 points 7 months ago (3 children)

The guy contacting the streaming services hoping to hit the jackpot with a bug bounty: they literally don't care until it's public, and when it's public it's a Microsoft problem.

The only reason they're using playready it's to make happy the copyright trolls and being compliant with the content license. The streaming services they just choose a solution that does the job with the minimum amount of work and money.

Seems like he wasted months for nothing. Next time try to do bug hunting on WordPress, it's easier and more remunerative.

[–] Moonrise2473@feddit.it 23 points 7 months ago (1 children)

An exception might be nowTV from sky. Being copyright trolls themselves they would spend years in development to reinvent the wheel if there was a 0.1% to block pirates.

In 2018 I was given a 6 months coupon for their service. I wasn't able to watch a single minute:

  1. For Android, at the time it was available on just 5 whitelisted Samsung Galaxy S devices (of course with strong root checks)
  2. For windows it required to install Microsoft silverlight even if it was discontinued years before by Microsoft itself, giving users a big security issue (using a discontinued web plugin that has direct access to the os is not a good idea)
  3. Linux support was completely missing
[–] thegreekgeek@midwest.social 3 points 7 months ago

Oh damn I forgot about silverlight. Only thing I used that was for some random Twitter client.

[–] conciselyverbose@sh.itjust.works 17 points 7 months ago

The streamers are the content owners.

That's why the market is so shit now. Because everyone who owns anything split into their own streaming service with 2 shows and 200 pieces of shit.

[–] electricprism@lemmy.ml 18 points 7 months ago

Microsoft: Am I a joke?

My guy you are an entire circus.

[–] onlinepersona@programming.dev 15 points 7 months ago

“The new research embeds some potentially valuable IP / know-how, which we need to protect too,” Gowdiak said. “Finally, disclosure of our know-how / toolset to Microsoft might jeopardize our future projects targeting the Windows OS platform.”

Amazing. He wants to protect hacking IP from Microsoft in order to continue hacking them. Suck it M$!

DRM is defective by design anyway. Once the master keys are out, either a new one is used and all devices with old key baked in are useless, or they have to suck it and be pwned.

Anti Commercial-AI license

[–] AnAnonymous@lemm.ee 12 points 7 months ago* (last edited 7 months ago)

This is what happens when all the "ethical hacking" bullshit is trending..