Are you a user of NoiseTorch? It's a popular way of getting some pretty great noise suppression on your microphone, to keep out all that background noise or a hammer hitting your desk. Sadly, the developer had a machine compromised.
The developer announced on the GitHub page that a system that held some of their private keys was compromised, giving attackers the ability to mess with the code. For that reason, they're suggesting people to not trust the builds and they think the source code could be compromised too.
Such a shame for such a great app that I've used previously. However, it appears the community is coming together to review the code in an attempt to help save the project.
Alternatives exist for those of you still needing some right now like EasyEffects and Cadmus.
Hopefully they will be able to salvage the project and ensure no harm was done.
Article taken from GamingOnLinux.com.
slaapliedje May 22, 2022
Quoting: basedThis is screwed, hope there is a way to fix this.Looks like Garuda Linux installs it by default. That's even more crappy.
It's the only program that works good enough for me and I NEED it
Edit: is it still using Python2?
(5/9) Orphaned package notification...
ananicy-cpp 1.0.0.rc6-1.1
cmake 3.23.1-1
go 2:1.18.2-1
hdparm 9.63-2
irqbalance 1.8.0-2
preload 0.6.4-7
python2-gobject 3.36.1-5
python2-numpy 1.16.6-2
python2-wxpython3 3.0.2.0-3
Last edited by slaapliedje on 22 May 2022 at 5:32 pm UTC
Quoting: 14Stolen private keys... So, if they were password protected, that would buy you time to make a new private key and revoke the old ones.Unless, keylogger on the system?
slaapliedje May 23, 2022
Quoting: whizseQuoting: 14Stolen private keys... So, if they were password protected, that would buy you time to make a new private key and revoke the old ones.Unless, keylogger on the system?
ha, Private Keylogger...
It's kind of shit. I've said in the past at some point that a computer that isn't connected to the internet is practically useless these days. But now it's gotten so bad that a computer connected to the internet is likely compromised in some way... Granted with how computers are, generally speaking the weakest link is the human at the keyboard. Guess this is why I kind of like old platforms like the Atari 8bit computers, and then slapping a FujiNet on them for internet access. Can someone hack it? Sure! But who is going to target such a thing? Also, they have a Mastadon client now.
catbox_fugue Jun 6, 2022
while they released a new version
im still highly skeptical
on high alert
especially since lawl said himself not to trust any forks.
i use an older version of noisetorch i self compiled back in december.
no reason to update and build. sometimes honestly question if i need it anymore and should i find alternatives...
it will take a lot of trust to recover this kind of disaster in the community.
Patreon
PayPal
See more from me