When using shadowsocks, the flow of information, for example to access the ING banking website would look like this:

Browser <--> ss_local <---> ss_server <--> https://ing.de

with the traffic between ss_local and ss_server being encrypted and inside of that we have a normal https connection (if everything works as expected).

Now let's see what happens when we view #Dezor as an attacker:
They own the ss_server, and they own the browser.
In the browser they disabled all indications, that might alert a user to problems with https, and with the ss_server they sit between the user and the website they want to visit.

So the ss_server in this scenario can just sit and wait for the browser to initiate a TLS handshake with ing.de, and then go ahead and establish its own TLS connections with the ING Server and the User, subsequently being able to read and alter all requests.

The browser backend will scream into the void that there's a certificate error, but the user will never see it in the UI.

[5/6]

Has anyone taken a closer look at this new Browser called #Dezor yet?

I have just quickly poked around a bit and I'm not sure if I'm being paranoid or if this could be a very malicious thing currently topping the productivity section of Apple's App Store [1]

TL;DR I suspect this thing could be the perfect large scale MITM machine.

It all started today when I saw a bunch of articles like this one from Heise [2], that talked about this new Browser with built-in "VPN" and AdBlocking capabilities, but focused on its apparent purpose of being able to illegaly stream Video content, usually only available on sites like Netflix.

I decided to poke around on their website for a moment and was kind of taken aback by their very "purist" imprint and
the fact that I was not able to find information on anyone that works at this company.

[1/x]

@zerforschung (vielleicht interessant für euch?)

[1] https://apps.apple.com/de/charts/iphone/produktivit%C3%A4t-apps/6007
[2] https://www.heise.de/tests/App-Chartstuermer-Dezor-im-Kurztest-Magerer-Browser-mit-einem-Hauch-Piraterie-7525742.html

App-Chartstürmer #Dezor im Kurztest: Magerer #Browser mit einem Hauch Piraterie | heise online https://www.heise.de/tests/App-Chartstuermer-Dezor-im-Kurztest-Magerer-Browser-mit-einem-Hauch-Piraterie-7525742.html #Webbrowser

📬 Drohen bei der Nutzung von Dezor Abmahnungen oder Strafanzeigen?
#Internet #Rechtssachen #Smartphones #Streaming #Webhosting #Abmahnung #Browser #Dezor #FilmspelerUrteil #Rechteinhaber #StreamingAbmahnung https://tarnkappe.info/artikel/rechtssachen/drohen-bei-der-nutzung-von-dezor-abmahnungen-oder-strafanzeigen-265035.html

📬 Dezor Browser ist für Piraten paradiesisch, doch für wie lange?
#IPTV #Kommentar #Streaming #Szene #Warez #Boersecx #Dezor #DezorBrowser #LiveTV #Mediaplayer #PayTVSender https://tarnkappe.info/kommentar/dezor-browser-ist-fuer-piraten-paradiesisch-doch-fuer-wie-lange-262592.html

📬 Dezor: neuer Browser mit kostenlosen VPN verfügbar
#Datenschutz #Internet #AdBlocker #Browser #Dezor #DezorSA #VPN https://tarnkappe.info/artikel/internet/dezor-neuer-browser-mit-kostenlosen-vpn-verfuegbar-257649.html