Windows users running the Tor browser can be tricked into uncloaking themselves, with a pretty straightforward trick based on Microsoft’s DRM system. The discovery was made by Hacker House, which says it’s been researching social engineering attacks made using DRM-protected content. What the UK-based security outfit found is that a pretty straightforward bit of social engineering – “click on this media file” – can, at the very least, reveal the user’s real IP address.
View full story
ORIGINAL SOURCE: The Register