• frankgrimeszz@lemmy.world
    link
    fedilink
    English
    arrow-up
    10
    ·
    4 months ago

    Some software check for updates without requiring the packages to be signed. The ISP could do a HTTP redirect to a fake torrent client update. The program says “Update available”. It downloads a malicious version.

    Other ISPs have been caught injecting adverts into their traffic. So there’s ways.

      • frankgrimeszz@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        4 months ago

        HTTPS would prevent advert injection, assuming you didn’t accept a bad certificate at any point. But if they control your router and infrastructure, they can still redirect you to other pages however they want.