0x6rss
@0x6rss • 17,341 subscribers
OSINT & malware enthusiast, CTI analyst https://t.co/bktDzzYyfz
Videos
meet track2pulse enables you to monitor, via an interactive map, OSINT-driven intelligence streams aggregated from country-specific telegram channels, covering topics such as geopolitics, information warfare, domestic developments, and strategic shifts. you can track: -APT group activities targeting specific countries -Terror-related fatality data and organizational intelligence -Critical infrastructure across relevant geographic regions -The Interpol wanted persons list -War-related flights and aircraft movements (flight tracking) -International arms trade flows between countries -National intelligence insights and satellite imagery-based data -cybersecurity incidents, including ransomware campaigns and threat reports You can create a personalized profile and follow only the developments that align with your operational interests , all in real time, directly on the map interface.
0x6rss54,878 次观看 • 3 个月前
Recently, I discovered a campaign spreading via Telegram Mini Apps. In fact, a threat actor attempted to phish me using this tactic.👇 The technique is highly convincing because it involves a trust boundary violation in Telegram’s MiniApp SDK (affecting Android, Desktop, iOS, and Web versions). Telegram allows third-party code to use its trusted native UI through showPopup(), but it does so without clearly indicating the source to the user or providing safeguards against abuse. This constitutes a design weakness, as the triggered pop-up belongs to Telegram and can be used in an arbitrary manner. -The attacker misleads the user by leveraging Telegram’s own native UI component. -The popup is rendered outside the MiniApp iframe, within Telegram’s own UI layer. -The user perceives it as a legitimate warning from Telegram itself. -By placing a single button, the attacker can redirect the user to a phishing page. -Since the phishing page opens inside the Mini App, the phishing URL is not visibly exposed. After conducting detailed research, I simulated this attack and demonstrated it in the video below. Be cautious when opening Mini Apps in bots.
0x6rss48,891 次观看 • 3 个月前
APT35/charmingkitten IRGC biriminin Türkiye özelinde yeni faaliyetleri ifşa olmuş. İran’ın sızdırılan Kashef ismindeki istihbarat sisteminde Türkiye’ye özel kritik unsurlar: Tahran’daki Türkiye Büyükelçiliğine giren-çıkan herkes plaka, saat, kimlik ve istihbarat notlarıyla takip ediliyor. Ayrıca İran’dan Türkiye’ye seyahat eden tüm vatandaşlar dini mezhep, aile bağı, iletişim ve hareket geçmişi ile profilleniyor. IRGC’nin siber birimi(APT35) ise bu verileri hedefleme, takip ve operasyon planlamasında kullanıyormuş. videoda Kashef istihbarat izleme sisteminde büyükelçilikler özelinde nasıl çalıştığı görülebiliyor
0x6rss43,391 次观看 • 5 个月前
Telegram channel belonging to DarkForums (The Jacuzzi) has been banned. It was a channel I had been following, but what made it distinctive was its cycle of ownership transfers. Initially, it was associated with BreachForums (BaphChat), then it was taken over by the FBI. Afterwards, it was put up for sale by an actor named “weep,” and finally it was used by DarkForums under the name “The Jacuzzi.” Although this lifecycle raises questions, it has left behind an archive consisting of thousands of messages.
0x6rss36,908 次观看 • 5 个月前
gelelim caller id spoof olayına.. aşağıdaki videoda gösterdiğim gibi herhangi bir numara taklit edilebiliyor. öncelikle, bu tür aramalar maalesef türkiye’deki operatörler tarafından tespit edilemiyor. tespiti için ya komple altyapıyı değiştirmeleri gerek, ya da STIR/SHAKEN (Secure Telephone Identity Revisited/Signature-based Handling of Asserted information using toKENs) teknolojisini sistemlerine entegre etmeleri gerekiyor. Şu an bu sistem bazı ülkelerde aktif olarak uygulanıyor. ancak yaptığımız çalışmalar sonucunda CİS tespitini manuel bir şekilde sağladık, yakında kamuoyuyla paylaşılır.
0x6rss48,018 次观看 • 1 年前
