this post was submitted on 20 Jun 2024
30 points (100.0% liked)

Science Memes

10264 readers
2754 users here now

Welcome to c/science_memes @ Mander.xyz!

A place for majestic STEMLORD peacocking, as well as memes about the realities of working in a lab.

Rules

  1. Don't throw mud. Behave like an intellectual and remember the human.
  2. Keep it rooted (on topic).
  3. No spam.
  4. Infographics welcome, get schooled.

Research Committee

Other Mander Communities

Science and Research

Biology and Life Sciences

Physical Sciences

Humanities and Social Sciences

Practical and Applied Sciences

Memes

Miscellaneous

founded 2 years ago
MODERATORS
Sal@mander.xyz
fossilesque@mander.xyz
SciBot@mander.xyz
30
Elsevier (mander.xyz)
submitted 2 months ago by fossilesque@mander.xyz to c/science_memes@mander.xyz
73 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[โ€“] tuna@discuss.tchncs.de 2 points 2 months ago (1 children)

Imagine they have an internal tool to check if the hash exists in their database, something like

"SELECT user FROM downloads WHERE hash = '" + hash + "';"

You set the pdf hash to be 1'; DROP TABLE books;-- they scan it, and it effectively deletes their entire business lmfaoo.

Another idea might be to duplicate the PDF many times and insert bogus metadata for each. Then submit requests saying that you found an illegal distribution of the PDF. If their process isn't automated it would waste a lot of time on their part to find the culprit Lol

I think it's more interesting to think of how to weaponize their own hash rather than deleting it

[โ€“] thesporkeffect@lemmy.world 1 points 2 months ago

That's using your ass. This is an active threat to society and it demands active countermeasures.

I'd bet they have a SaaS 'partner' who trawls SciHub and other similar sites. I'll try to remember to see if there is any hint of how this is being accomplished over the next few days.