Video yükleniyor...

Video Yüklenemedi

Bu video yüklenirken bir sorun oluştu. Bu geçici bir ağ sorunundan kaynaklanıyor olabilir veya video kullanılamıyor olabilir.

Ana Sayfaya Dön

Android malware (.apk) can be spread through a fake video by manipulating the Telegram file extension. I showed how it is done in the video below.

0x6rss

17,357 subscribers

180,643 görüntüleme • 1 yıl önce •via X (Twitter)

Bilim & Teknoloji Haberler & Politika

Anya Rossi• Live Now

Private livecam show

10 Yorum

0x6rss profil fotoğrafı

0x6rss1 yıl önce

Hackers are selling this method underground under the name "Telegram video exploit".

bl4ckh4ck5 profil fotoğrafı

bl4ckh4ck51 yıl önce

Makes me curious what Bitdefender mobile would do with that

Daps 🦙🔥 profil fotoğrafı

Daps 🦙🔥1 yıl önce

Do you have the POC on GitHub ?

CYBERTR0N 🛡️ profil fotoğrafı

CYBERTR0N 🛡️1 yıl önce

Link bro ?

talalalal profil fotoğrafı

talalalal1 yıl önce

Vay anasını sayın seyirciler

Yakuß CemiL ♂ profil fotoğrafı

Yakuß CemiL ♂1 yıl önce

hll

Vagrant profil fotoğrafı

Vagrant1 yıl önce

I thought tg already patched this?

Name profil fotoğrafı

Name1 yıl önce

data: be like

Smukx.E profil fotoğrafı

Smukx.E1 yıl önce

neat and legit malware ;)

rizal rasmalian profil fotoğrafı

rizal rasmalian1 yıl önce

Cool, all infos about the "hole" in a vid,i succeed to reconstruct the"hole" and create my own Telegram-Exploit, also why i can "see" the "hole" because like we talked,it's similar to Whatsapp "hole" i found. So now, we have Telegram Exploit and Whatsapp Exploit, what's next? :D

Benzer Videolar

Recently, I discovered a campaign spreading via Telegram Mini Apps. In fact, a threat actor attempted to phish me using this tactic.👇 The technique is highly convincing because it involves a trust boundary violation in Telegram’s MiniApp SDK (affecting Android, Desktop, iOS, and Web versions). Telegram allows third-party code to use its trusted native UI through showPopup(), but it does so without clearly indicating the source to the user or providing safeguards against abuse. This constitutes a design weakness, as the triggered pop-up belongs to Telegram and can be used in an arbitrary manner. -The attacker misleads the user by leveraging Telegram’s own native UI component. -The popup is rendered outside the MiniApp iframe, within Telegram’s own UI layer. -The user perceives it as a legitimate warning from Telegram itself. -By placing a single button, the attacker can redirect the user to a phishing page. -Since the phishing page opens inside the Mini App, the phishing URL is not visibly exposed. After conducting detailed research, I simulated this attack and demonstrated it in the video below. Be cautious when opening Mini Apps in bots.

Recently, I discovered a campaign spreading via Telegram Mini Apps. In fact, a threat actor attempted to phish me using this tactic.👇 The technique is highly convincing because it involves a trust boundary violation in Telegram’s MiniApp SDK (affecting Android, Desktop, iOS, and Web versions). Telegram allows third-party code to use its trusted native UI through showPopup(), but it does so without clearly indicating the source to the user or providing safeguards against abuse. This constitutes a design weakness, as the triggered pop-up belongs to Telegram and can be used in an arbitrary manner. -The attacker misleads the user by leveraging Telegram’s own native UI component. -The popup is rendered outside the MiniApp iframe, within Telegram’s own UI layer. -The user perceives it as a legitimate warning from Telegram itself. -By placing a single button, the attacker can redirect the user to a phishing page. -Since the phishing page opens inside the Mini App, the phishing URL is not visibly exposed. After conducting detailed research, I simulated this attack and demonstrated it in the video below. Be cautious when opening Mini Apps in bots.

0x6rss

48,964 görüntüleme • 3 ay önce

WhatsApp trick: Android malware can impersonate PDF file

WhatsApp trick: Android malware can impersonate PDF file

Mobile Hacker

78,799 görüntüleme • 1 yıl önce

Dear threat hunters and malware analysts, Threat.Zone | Holistic Malware Analysis Platform , a Holistic Malware Analysis Platform, allows you to capture the Telegram C2 network requests of the XWORM malware and hunt the logs using Matkap! ➡️

Dear threat hunters and malware analysts, Threat.Zone | Holistic Malware Analysis Platform , a Holistic Malware Analysis Platform, allows you to capture the Telegram C2 network requests of the XWORM malware and hunt the logs using Matkap! ➡️

0x6rss

21,090 görüntüleme • 1 yıl önce

Hey threat hunters and malware analysts! The web version of Matkap is now live! You can now hunt malicious Telegram bots via Happy hunting!

Hey threat hunters and malware analysts! The web version of Matkap is now live! You can now hunt malicious Telegram bots via Happy hunting!

0x6rss

62,598 görüntüleme • 1 yıl önce

The exercise I see BUTCHERED most often in the gym is Leg Press Video 1 is how 99% of people do it Video 2 is how it SHOULD be done

The exercise I see BUTCHERED most often in the gym is Leg Press Video 1 is how 99% of people do it Video 2 is how it SHOULD be done

Dean Turner

581,453 görüntüleme • 1 ay önce

The Rabbit R1 uses Android under the hood. Someone shared Rabbit R1's launcher APK with Android Authority, and with a bit of tinkering, they managed to install it on an Android PHONE (Pixel 6A) Entire interface users interact with is powered by a single Android app. Video Credit: Android Authority Source: Android Authority

The Rabbit R1 uses Android under the hood. Someone shared Rabbit R1's launcher APK with Android Authority, and with a bit of tinkering, they managed to install it on an Android PHONE (Pixel 6A) Entire interface users interact with is powered by a single Android app. Video Credit: Android Authority Source: Android Authority

AshutoshShrivastava

162,305 görüntüleme • 2 yıl önce

Video: Zamfara Youths being Paid ₦10,000 Each and Given New Android Phones to Promote Governor Dauda Lawal and Spread Propaganda. This shows that Dauda’s administration may be manipulating public opinion by incentivizing youths to disseminate misleading information in the state

Video: Zamfara Youths being Paid ₦10,000 Each and Given New Android Phones to Promote Governor Dauda Lawal and Spread Propaganda. This shows that Dauda’s administration may be manipulating public opinion by incentivizing youths to disseminate misleading information in the state

SAMBO MAI HULA

101,815 görüntüleme • 8 ay önce

Yesterday’s #ZeroDayRAT demo showed a 1‑click Android 15 exploit Real or fake? I don't know. If it is real, cleanup could be a problem.

Yesterday’s #ZeroDayRAT demo showed a 1‑click Android 15 exploit Real or fake? I don't know. If it is real, cleanup could be a problem.

Mobile Hacker

12,000 görüntüleme • 4 ay önce

Here is a little video I made using the new Grok video feature where you can animate more than one image in a video. I also published an article below so you can see how I did it. Very simple! Lots of fun 🙂

Here is a little video I made using the new Grok video feature where you can animate more than one image in a video. I also published an article below so you can see how I did it. Very simple! Lots of fun 🙂

G. Kim

739,305 görüntüleme • 3 ay önce

hi threat hunters and malware analysts! I want to introduce you to my newly developed tool called "Matkap". with this tool, you can infiltrate telegram bots(malbots) associated with malware, gain access to their messages, and extract all their logs! ➡️

hi threat hunters and malware analysts! I want to introduce you to my newly developed tool called "Matkap". with this tool, you can infiltrate telegram bots(malbots) associated with malware, gain access to their messages, and extract all their logs! ➡️

0x6rss

191,751 görüntüleme • 1 yıl önce

update: I have added the VNC feature. This way, the phone screen can be viewed through parental panel (screen tracker).

update: I have added the VNC feature. This way, the phone screen can be viewed through parental panel (screen tracker).

0x6rss

34,825 görüntüleme • 1 yıl önce

More Extremely Important Information here ⬇️ - In fact we must not download any apk file from any unknown number whether ,it is a wedding card or anything, such scam also happened during Ram mandir Inauguration time , when scammers sent apk files claimed to be a priority visiting pas . - Such malware will activate mirroring applications where anything going on in your screen will be visible to the scammers devices, that’s how they can take all your personal & financial data . - Tell this information especially to your parents because many Parents are very innocent and they do not know much about such techy things . - Not only apk files but also any unknown links we should not click on , which we get from Unknown numbers. - Point to consider here is , usually the wedding cards Come in Pdf form or document form or photo or a video not through APK . Source of the Video : The Times of India E news paper

More Extremely Important Information here ⬇️ - In fact we must not download any apk file from any unknown number whether ,it is a wedding card or anything, such scam also happened during Ram mandir Inauguration time , when scammers sent apk files claimed to be a priority visiting pas . - Such malware will activate mirroring applications where anything going on in your screen will be visible to the scammers devices, that’s how they can take all your personal & financial data . - Tell this information especially to your parents because many Parents are very innocent and they do not know much about such techy things . - Not only apk files but also any unknown links we should not click on , which we get from Unknown numbers. - Point to consider here is , usually the wedding cards Come in Pdf form or document form or photo or a video not through APK . Source of the Video : The Times of India E news paper

Mohini Of Investing

24,382 görüntüleme • 1 yıl önce

Just walked through Union Station in DC for the first time in years, and I can’t believe it... It’s clean, safe, and beautiful. Exactly how it should be. A place Americans can be proud of. It used to be overrun by homeless people and drug addicts. Now it’s a place I can bring my family. Well done, Trump Administration. Well done.

Just walked through Union Station in DC for the first time in years, and I can’t believe it... It’s clean, safe, and beautiful. Exactly how it should be. A place Americans can be proud of. It used to be overrun by homeless people and drug addicts. Now it’s a place I can bring my family. Well done, Trump Administration. Well done.

Benny Johnson

928,561 görüntüleme • 8 ay önce

How to create your Based Agent with 0 lines of code Recorded a quick demo video to show how easy it is and walk you through the entire process step-by-step All the links are in the comment below

How to create your Based Agent with 0 lines of code Recorded a quick demo video to show how easy it is and walk you through the entire process step-by-step All the links are in the comment below

lincoln.base.eth

148,805 görüntüleme • 1 yıl önce

Here's the video where Blessingceo showed a fake medical report. A terribly “edited” result. At least, if you want to fake it, let it be professional🤦😀

Here's the video where Blessingceo showed a fake medical report. A terribly “edited” result. At least, if you want to fake it, let it be professional🤦😀

RAZOR BLADE

73,606 görüntüleme • 2 ay önce

HIP MOBILITY - THIS IS A MUST TRY when it comes to sprinting! I love the iso on the hamstring while reaching back into hip extension. drachperformance coached me through this on the latest episode of the PEX Project. Find the full video below!

HIP MOBILITY - THIS IS A MUST TRY when it comes to sprinting! I love the iso on the hamstring while reaching back into hip extension. drachperformance coached me through this on the latest episode of the PEX Project. Find the full video below!

Vernon Griffith, CSCS*D

38,566 görüntüleme • 4 ay önce

mrredpillz jokaqarmy That is fake and NOT in the real video. Around 4:08 in the YouTube video linked below.

mrredpillz jokaqarmy That is fake and NOT in the real video. Around 4:08 in the YouTube video linked below.

OhioRob

105,544 görüntüleme • 2 ay önce

John McAfee told the world how to crack any phone in 2016: "Any computer, any software, whether is a Android, Apple, or what you have can be done." "We can do this with any machine and it is a half-hour job." "Now I've just told all of America and the whole world how it's done. It's trivial."

John McAfee told the world how to crack any phone in 2016: "Any computer, any software, whether is a Android, Apple, or what you have can be done." "We can do this with any machine and it is a half-hour job." "Now I've just told all of America and the whole world how it's done. It's trivial."

Defiant Ghost

434,937 görüntüleme • 4 ay önce

There is a world Pedophile ring!!! It must be stopped by any means necessary.. The man in the video is the devil himself... Spread this far and wide... Save our children..

There is a world Pedophile ring!!! It must be stopped by any means necessary.. The man in the video is the devil himself... Spread this far and wide... Save our children..

Freemason

48,137 görüntüleme • 1 yıl önce