I understand how it works but I don’t understand why. Let’s say I hack VLC’s website to modify their download file to add something malicious. Now the checksum of the new file is going to be different from the checksum of the website but wouldn’t I just change the checksum of the website too?
In: 6
It’s more of a mechanism in place for the user to verify that they downloaded the original, non-tampered file with no corruptions.
There are tons of ways a file could be manipulated in-transit, on the way to your system – for instance, man in the middle attacks, DNS hijacks, etc
Latest Answers