Forwarded from Tech & Leaks Zone
Xiaomi UBL 2025: A Ridiculous Circus You Signed Up For
Xiaomi's Bootloader unlocking rules in China is insane!
In December 2024, Xiaomi announced changed the rules bootloader (BL) unlocking application in China. As of January 1, 2025, users with BL permissions can unlock only 1 bound device over their permission’s validity. This is a major decrease from up to 3 bound devices previously allowed. This same rules also exist for global users now.
Then in January 2025, Xiaomi again updated the rules, mainly adding2 new contents:
1) Answering questions/ registering/ applying/ binding/ unlocking/ using an unlocked device, etc. all need to be done on the same device.
2) Complete the binding and unlocking operations within 14 days after obtaining the qualification.
The Xiaomi Community app is needed to obtain UBL applications and to apply for that:
1) Pass the Unlocking Qualification QUIZ which contains 15 questions
2) Reach the 5th level of Xiaomi community growth
3) Complete REAL NAME Authentication
The opening hours for the quiz are not fixed, and each participation must be separated by 7 days.
Then in February 2025, Xiaomi added the qualification review instructions, which takes normally 1-7 days for Xiaomi to complete the review. Xiaomi checks for:
1) The Mi account is at least 6 months old.
2) Users must have a 6 months record in the Xiaomi Community with NO bans, warnings, or account suspensions.
3) No recent security-sensitive changes (phone number, email, security settings) to the Xiaomi account
4) Changes in the device used or the IP location in the past 6 months (IP changes under reasonable use not affected)
If the user actively withdraws from the unlocking application project, the qualification expires and is not used, etc, the user will not be able to pass the qualification review again.
Then in April 2025, they again updated the UBL application FAQ:
1) Any use of scripts or other improper means to obtain growth points in the Xiaomi community
2) Any violations during the answering of questions or registration process
3) Any use of unofficial answering methods for Quiz etc.
Even if the user meets the unlocking application conditions but maliciously slanders, abuses, or spreads rumors about Xiaomi on any social media app or use AI generated answer for application reason or copy-paste Quiz answers or violate Xiaomi User Agreement, the application will not be approved.
If a user is found or suspected that the operation is performed by someone other than the Xiaomi account’s real-name authenticated person or unlocking device was done for someone else, the unlocking qualification is used for non-personal or unauthorized devices, the Xiaomi account information is abnormally changed after unlocking, or any other violation of the Xiaomi account user agreement occurs, the account will be permanently banned and relevant LEGAL responsibilities will be pursued depending on the circumstances.
At This Point, Just Say Bootloader Unlocking Is Banned, Xiaomi. Instead of calling it “unlocking,” just rename it to “Xiaomi Loyalty Gauntlet 2025” and be done with it.
Follow @TechLeaksZone
Xiaomi's Bootloader unlocking rules in China is insane!
In December 2024, Xiaomi announced changed the rules bootloader (BL) unlocking application in China. As of January 1, 2025, users with BL permissions can unlock only 1 bound device over their permission’s validity. This is a major decrease from up to 3 bound devices previously allowed. This same rules also exist for global users now.
Then in January 2025, Xiaomi again updated the rules, mainly adding2 new contents:
1) Answering questions/ registering/ applying/ binding/ unlocking/ using an unlocked device, etc. all need to be done on the same device.
2) Complete the binding and unlocking operations within 14 days after obtaining the qualification.
The Xiaomi Community app is needed to obtain UBL applications and to apply for that:
1) Pass the Unlocking Qualification QUIZ which contains 15 questions
2) Reach the 5th level of Xiaomi community growth
3) Complete REAL NAME Authentication
The opening hours for the quiz are not fixed, and each participation must be separated by 7 days.
Then in February 2025, Xiaomi added the qualification review instructions, which takes normally 1-7 days for Xiaomi to complete the review. Xiaomi checks for:
1) The Mi account is at least 6 months old.
2) Users must have a 6 months record in the Xiaomi Community with NO bans, warnings, or account suspensions.
3) No recent security-sensitive changes (phone number, email, security settings) to the Xiaomi account
4) Changes in the device used or the IP location in the past 6 months (IP changes under reasonable use not affected)
If the user actively withdraws from the unlocking application project, the qualification expires and is not used, etc, the user will not be able to pass the qualification review again.
Then in April 2025, they again updated the UBL application FAQ:
1) Any use of scripts or other improper means to obtain growth points in the Xiaomi community
2) Any violations during the answering of questions or registration process
3) Any use of unofficial answering methods for Quiz etc.
Even if the user meets the unlocking application conditions but maliciously slanders, abuses, or spreads rumors about Xiaomi on any social media app or use AI generated answer for application reason or copy-paste Quiz answers or violate Xiaomi User Agreement, the application will not be approved.
If a user is found or suspected that the operation is performed by someone other than the Xiaomi account’s real-name authenticated person or unlocking device was done for someone else, the unlocking qualification is used for non-personal or unauthorized devices, the Xiaomi account information is abnormally changed after unlocking, or any other violation of the Xiaomi account user agreement occurs, the account will be permanently banned and relevant LEGAL responsibilities will be pursued depending on the circumstances.
At This Point, Just Say Bootloader Unlocking Is Banned, Xiaomi. Instead of calling it “unlocking,” just rename it to “Xiaomi Loyalty Gauntlet 2025” and be done with it.
Follow @TechLeaksZone
Forwarded from Above Phone Announcements
⚡️Travel Light. Connect Instantly. Stay Private.
@abovephone
eSIM + Above DataSIM = unstoppable mobile freedom.
🌎 Download a plan instantly in 50+ countries
🛡️ No ID needed — your info stays with you
📲 Use encrypted apps with no trace
💼 Works on most modern devices
No carrier contracts. No surveillance.
Learn more & grab your Above DataSIM:
https://abovephone.com/esim-vs-physical-sim-guide/
@abovephone
eSIM + Above DataSIM = unstoppable mobile freedom.
🌎 Download a plan instantly in 50+ countries
🛡️ No ID needed — your info stays with you
📲 Use encrypted apps with no trace
💼 Works on most modern devices
No carrier contracts. No surveillance.
Learn more & grab your Above DataSIM:
https://abovephone.com/esim-vs-physical-sim-guide/
Above Phone
eSIM vs Physical SIM: Key Differences & How to Switch Right Now
Compare eSIM and physical SIM pros and cons. Learn which is better for you and get a step-by-step guide on how to switch between them easily.
Forwarded from Hacker News
www.morling.dev
This AI Agent Should Have Been a SQL Query
AI Agents have improved in leaps and bounds in recent times, moving beyond simple chatbots to sophisticated, autonomous systems. This post explores a novel approach to building agentic systems: using the power of streaming SQL queries. Discover how platforms…
Forwarded from Hacker News
Forwarded from #TBOT: Take Back Our Tech
🚨 New Interview Out Now!
I joined Dr. Trozzi to break down how Big Tech turned convenience into control—and why that should concern all of us.
We covered the illusion of safety, the systems behind your screen, and the real tools you can use to take back your digital freedom.
🎧 Watch the full interview here
—
🫶 @takebackourtech
📩 WEBSITE & NEWSLETTER | 🎥 VIDEOS| XMPP | SUBSTACK
I joined Dr. Trozzi to break down how Big Tech turned convenience into control—and why that should concern all of us.
We covered the illusion of safety, the systems behind your screen, and the real tools you can use to take back your digital freedom.
🎧 Watch the full interview here
—
🫶 @takebackourtech
📩 WEBSITE & NEWSLETTER | 🎥 VIDEOS| XMPP | SUBSTACK
www.drtrozzi.news
Hakeem Anwar: The Importance of Privacy in the Fight for Freedom
Why Privacy Is Essential in the Age of Medical and Digital Authoritarianism, and How to Achieve Digital Freedom
Forwarded from Gizchina.com
Nothing Phone (3) Promises 7 Years of Software Support
https://www.gizchina.com/2025/06/18/nothing-phone-3-promises-7-years-of-software-support/
https://www.gizchina.com/2025/06/18/nothing-phone-3-promises-7-years-of-software-support/
FREE UNLOCKING METHOD FOR XIAOMI BOOTLOADER
DOWNLOAD AND INSTALL
1. Extract the attached script
2. Python (See attached image for options to select during installation)
3. Firefox and the Cookie Editor add-on
4. Chrome
INSTRUCTIONS
Get the cookies a short while before running the script (30 minutes max). Cookies are your session time on the website and expire the same as your session. The steps for getting cookies can be done on your mobile or PC.
1. Open Firefox and log in with the account linked to the mobile you want to unlock using link1 or link2. It doesn't matter which one you use; use one of the two.
Open the Cookie Editor add-on, search for "new" and expand the "new_bbs_serviceToken" section. Copy the token that appears in the Value section and paste it in positions 1 and 3 (deleting the numbers 1 and 3) of the token.txt file.
2. Open Chrome and log in as before using link1 or link2. Enter the following in the URL bar:
javascript :(function(){var token=document.cookie.match(/popRunToken=([^;]+)/);if(token){prompt("Copy the token:", token[1]);}else{alert("Token not found");}})()
*It is very important that you remove the space between "JavaScript" and ":" after pasting it in the URL bar.
Copy the token it gives you and paste it in positions 2 and 4 (deleting the numbers 2 and 4) of the token.txt file.
3. Run Script_Permiso_Desbloqueo.py, enter 1, and press Enter. Without closing the previous window, run Script_Permiso_Desbloqueo.py again and enter 2. This will open up to 4 windows.
DONE! Now just wait until 00:00 Chinese time and the script will run automatically.
It's very important that no matter what the script results in, you should ALWAYS do the following on your phone:
Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
If that fails:
Settings » My Account » Sign out of Account » then restart the device;
After restarting: Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
DOWNLOAD AND INSTALL
1. Extract the attached script
2. Python (See attached image for options to select during installation)
3. Firefox and the Cookie Editor add-on
4. Chrome
INSTRUCTIONS
Get the cookies a short while before running the script (30 minutes max). Cookies are your session time on the website and expire the same as your session. The steps for getting cookies can be done on your mobile or PC.
1. Open Firefox and log in with the account linked to the mobile you want to unlock using link1 or link2. It doesn't matter which one you use; use one of the two.
Open the Cookie Editor add-on, search for "new" and expand the "new_bbs_serviceToken" section. Copy the token that appears in the Value section and paste it in positions 1 and 3 (deleting the numbers 1 and 3) of the token.txt file.
2. Open Chrome and log in as before using link1 or link2. Enter the following in the URL bar:
javascript :(function(){var token=document.cookie.match(/popRunToken=([^;]+)/);if(token){prompt("Copy the token:", token[1]);}else{alert("Token not found");}})()
*It is very important that you remove the space between "JavaScript" and ":" after pasting it in the URL bar.
Copy the token it gives you and paste it in positions 2 and 4 (deleting the numbers 2 and 4) of the token.txt file.
3. Run Script_Permiso_Desbloqueo.py, enter 1, and press Enter. Without closing the previous window, run Script_Permiso_Desbloqueo.py again and enter 2. This will open up to 4 windows.
DONE! Now just wait until 00:00 Chinese time and the script will run automatically.
It's very important that no matter what the script results in, you should ALWAYS do the following on your phone:
Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
If that fails:
Settings » My Account » Sign out of Account » then restart the device;
After restarting: Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
Forwarded from It's FOSS
YouTube
Ctrl + What? These Linux Terminal Shortcuts Will Save You Time!
✨ Explore ONLYOFFICE 9.0: https://www.onlyoffice.com/download-docs.aspx?ref=if-yt
Want to speed up your Linux terminal workflow?
In this short video, I’ll share some of the most useful and time-saving keyboard shortcuts for the Linux command line.
Whether…
Want to speed up your Linux terminal workflow?
In this short video, I’ll share some of the most useful and time-saving keyboard shortcuts for the Linux command line.
Whether…
1 deleted accounts has been removed from this group 🚫👻Forwarded from The Hacker News
🚨 New Linux Root Exploits Discovered!
2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed.
The worst part? Most distros are vulnerable by default.
Details here → https://thehackernews.com/2025/06/new-linux-flaws-enable-full-root-access.html
2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed.
The worst part? Most distros are vulnerable by default.
Details here → https://thehackernews.com/2025/06/new-linux-flaws-enable-full-root-access.html
Forwarded from The Hacker News
Meta is rolling out passkeys across Facebook, Messenger, and Meta Pay—biometrics instead of passwords or SMS codes.
The goal? No more phishing, leaks, or login scams.
Full details on what’s changing → https://thehackernews.com/2025/06/meta-adds-passkey-login-support-to.html
The goal? No more phishing, leaks, or login scams.
Full details on what’s changing → https://thehackernews.com/2025/06/meta-adds-passkey-login-support-to.html
Forwarded from The Hacker News
🚨 Russian APT29 hackers hijacked Gmail accounts using app passwords—bypassing 2FA with social engineering.
They posed as the U.S. State Dept to steal access from academics and critics.
Full story → https://thehackernews.com/2025/06/russian-apt29-exploits-gmail-app.html
They posed as the U.S. State Dept to steal access from academics and critics.
Full story → https://thehackernews.com/2025/06/russian-apt29-exploits-gmail-app.html