In the realm of information security, claims of widespread supply-chain sabotage are often exaggerated. It’s typically easier to steal credentials or distribute malicious files than to execute complex attacks. A recent social media buzz involved an Ethernet-to-USB adapter allegedly loaded with malware from China, but further investigation revealed it was likely just a standard device with an old Realtek design. Despite concerns about malicious hardware, the reality of this specific case was more mundane. While caution is warranted for certain high-risk individuals or organizations, the average user can rest easy knowing that not every strange tech device is a cause for alarm.
https://lcamtuf.substack.com/p/investigating-an-evil-rj45-dongle