// UPDATE from SP //
We now scan .torrent files (where possible) for bad extensions and purge any such torrents from the system. Bad extensions include but are not limited to exe, bat, com, reg, etc.
Important to note that this is not 100% gauranteed. If SP can't download the torrent file itself then it can't verify it and instead redirects the user to the torrent directly (bypassing SP's server). This is also true if the torrent file can't be decoded for some reason. It will keep trying to verify it each time someone tries to download the torrent which means that in most cases any bad files should be caught immediately or very quickly.
// END UPDATE //
On August 20, 2017 at around 2:10 - 2:30 AM UTC, a new torrent file [HorribleSubs] Princess Principal - 07 [720p] .mkv arrived on my RSS feed. My torrent client proceeded to download it as usual but something weird happened after the download. Something inside the torrent triggered my antimalware scanners so I went to investigate.
I found out that:
- The '.torrent' file's binary content seems different from previous releases.
- HorribleSubs is yet to release torrents for episode 7 and that no such thing appears on their site or in Nyaa.si (as of the time writing this).
Attached with this post contains the torrent files for this episode and the previous ones for comparison.
TL;DR [HorribleSubs] Princess Principal - 07 [720p] .mkv.torrent might have been compromised.
EDIT: Went to Anidex and found out the person/account who might have uploaded this torrent. Whoever did this is an asshole for sure.