FREE UNLOCKING METHOD FOR XIAOMI BOOTLOADER
DOWNLOAD AND INSTALL
1. Extract the attached script
2. Python (See attached image for options to select during installation)
3. Firefox and the Cookie Editor add-on
4. Chrome
INSTRUCTIONS
Get the cookies a short while before running the script (30 minutes max). Cookies are your session time on the website and expire the same as your session. The steps for getting cookies can be done on your mobile or PC.
1. Open Firefox and log in with the account linked to the mobile you want to unlock using link1 or link2. It doesn't matter which one you use; use one of the two.
Open the Cookie Editor add-on, search for "new" and expand the "new_bbs_serviceToken" section. Copy the token that appears in the Value section and paste it in positions 1 and 3 (deleting the numbers 1 and 3) of the token.txt file.
2. Open Chrome and log in as before using link1 or link2. Enter the following in the URL bar:
javascript :(function(){var token=document.cookie.match(/popRunToken=([^;]+)/);if(token){prompt("Copy the token:", token[1]);}else{alert("Token not found");}})()
*It is very important that you remove the space between "JavaScript" and ":" after pasting it in the URL bar.
Copy the token it gives you and paste it in positions 2 and 4 (deleting the numbers 2 and 4) of the token.txt file.
3. Run Script_Permiso_Desbloqueo.py, enter 1, and press Enter. Without closing the previous window, run Script_Permiso_Desbloqueo.py again and enter 2. This will open up to 4 windows.
DONE! Now just wait until 00:00 Chinese time and the script will run automatically.
It's very important that no matter what the script results in, you should ALWAYS do the following on your phone:
Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
If that fails:
Settings » My Account » Sign out of Account » then restart the device;
After restarting: Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
DOWNLOAD AND INSTALL
1. Extract the attached script
2. Python (See attached image for options to select during installation)
3. Firefox and the Cookie Editor add-on
4. Chrome
INSTRUCTIONS
Get the cookies a short while before running the script (30 minutes max). Cookies are your session time on the website and expire the same as your session. The steps for getting cookies can be done on your mobile or PC.
1. Open Firefox and log in with the account linked to the mobile you want to unlock using link1 or link2. It doesn't matter which one you use; use one of the two.
Open the Cookie Editor add-on, search for "new" and expand the "new_bbs_serviceToken" section. Copy the token that appears in the Value section and paste it in positions 1 and 3 (deleting the numbers 1 and 3) of the token.txt file.
2. Open Chrome and log in as before using link1 or link2. Enter the following in the URL bar:
javascript :(function(){var token=document.cookie.match(/popRunToken=([^;]+)/);if(token){prompt("Copy the token:", token[1]);}else{alert("Token not found");}})()
*It is very important that you remove the space between "JavaScript" and ":" after pasting it in the URL bar.
Copy the token it gives you and paste it in positions 2 and 4 (deleting the numbers 2 and 4) of the token.txt file.
3. Run Script_Permiso_Desbloqueo.py, enter 1, and press Enter. Without closing the previous window, run Script_Permiso_Desbloqueo.py again and enter 2. This will open up to 4 windows.
DONE! Now just wait until 00:00 Chinese time and the script will run automatically.
It's very important that no matter what the script results in, you should ALWAYS do the following on your phone:
Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
If that fails:
Settings » My Account » Sign out of Account » then restart the device;
After restarting: Settings » Advanced Settings » For Developers » Mi Unlock Status » Link Account to Device. Try unlocking with Mi_Unlock.
Forwarded from It's FOSS
Become a terminal ninja with these shortcuts! 👨‍💻
https://www.youtube.com/watch?v=shvnnzy-R5M
https://www.youtube.com/watch?v=shvnnzy-R5M
YouTube
Ctrl + What? These Linux Terminal Shortcuts Will Save You Time!
✨ Explore ONLYOFFICE 9.0: https://www.onlyoffice.com/download-docs.aspx?ref=if-yt
Want to speed up your Linux terminal workflow?
In this short video, I’ll share some of the most useful and time-saving keyboard shortcuts for the Linux command line.
Whether…
Want to speed up your Linux terminal workflow?
In this short video, I’ll share some of the most useful and time-saving keyboard shortcuts for the Linux command line.
Whether…
1 deleted accounts has been removed from this group đźš«đź‘»Forwarded from The Hacker News
🚨 New Linux Root Exploits Discovered!
2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed.
The worst part? Most distros are vulnerable by default.
Details here → https://thehackernews.com/2025/06/new-linux-flaws-enable-full-root-access.html
2 chained flaws (CVE-2025-6018 & 6019) let any local user become root in seconds—no zero-day needed.
The worst part? Most distros are vulnerable by default.
Details here → https://thehackernews.com/2025/06/new-linux-flaws-enable-full-root-access.html
Forwarded from The Hacker News
Meta is rolling out passkeys across Facebook, Messenger, and Meta Pay—biometrics instead of passwords or SMS codes.
The goal? No more phishing, leaks, or login scams.
Full details on what’s changing → https://thehackernews.com/2025/06/meta-adds-passkey-login-support-to.html
The goal? No more phishing, leaks, or login scams.
Full details on what’s changing → https://thehackernews.com/2025/06/meta-adds-passkey-login-support-to.html
Forwarded from The Hacker News
🚨 Russian APT29 hackers hijacked Gmail accounts using app passwords—bypassing 2FA with social engineering.
They posed as the U.S. State Dept to steal access from academics and critics.
Full story → https://thehackernews.com/2025/06/russian-apt29-exploits-gmail-app.html
They posed as the U.S. State Dept to steal access from academics and critics.
Full story → https://thehackernews.com/2025/06/russian-apt29-exploits-gmail-app.html
â– â– â– â– â–ˇ Researchers unearth keyloggers on Outlook login pages.
https://www.helpnetsecurity.com/2025/06/17/researchers-unearth-keyloggers-on-outlook-login-pages/
https://www.helpnetsecurity.com/2025/06/17/researchers-unearth-keyloggers-on-outlook-login-pages/
Help Net Security
Researchers unearth keyloggers on Outlook login pages
Unknown threat actors have injected organizations' Outlook on the Web (OWA) login page with browser-based keyloggers.
Forwarded from The Hacker News
This media is not supported in your browser
VIEW IN TELEGRAM
⚠️ Most cyberattacks today don’t crash doors—they slip through unnoticed, hiding in trusted tools.
No malware alerts. No strange IPs. Just routine traffic—until it’s too late.
Watch this free WEBINAR to see how top experts spot and stop these hidden attacks: https://thehackernews.com/2025/06/uncover-lots-attacks-hiding-in-trusted.html
No malware alerts. No strange IPs. Just routine traffic—until it’s too late.
Watch this free WEBINAR to see how top experts spot and stop these hidden attacks: https://thehackernews.com/2025/06/uncover-lots-attacks-hiding-in-trusted.html
Forwarded from Android Security & Malware
Your Mobile App, Their Playground: The Dark side of the Virtualization by GodFather malware
https://zimperium.com/blog/your-mobile-app-their-playground-the-dark-side-of-the-virtualization
https://zimperium.com/blog/your-mobile-app-their-playground-the-dark-side-of-the-virtualization
Zimperium
Your Mobile App, Their Playground: The Dark side of the Virtualization - Zimperium
true
Forwarded from Android Security & Malware
Fake Play and Allegro Apps - a threat to Android users by Crocodilus banker
https://www.sirt.pl/falszywe-aplikacje-play-i-allegro-zagrozenie-dla-uzytkownikow-androida/
https://www.sirt.pl/falszywe-aplikacje-play-i-allegro-zagrozenie-dla-uzytkownikow-androida/
PREBYTES Security Incident Response Team
Fałszywe Aplikacje Play i Allegro - zagrożenie dla użytkowników Androida!
Jedna niepozorna aplikacja wystarczy, by ktoś przejął kontrolę nad Twoim smartfonem – od czytania wiadomości po wykonywanie przelewów. Jakie techniki stosują hakerzy i co możesz zrobić, by chronić swoją prywatność? Przeczytaj zanim pobierzesz fałszywą aplikację.
Forwarded from Gizchina.com
Oppo Find X9 Pro to feature world’s first 200MP periscope camera
https://www.gizchina.com/2025/06/19/oppo-find-x9-pro-to-feature-worlds-first-200mp-periscope-camera/
https://www.gizchina.com/2025/06/19/oppo-find-x9-pro-to-feature-worlds-first-200mp-periscope-camera/
Forwarded from Gizchina.com
NFC 15 Standard Released: Extended Range and New Features
https://www.gizchina.com/2025/06/19/nfc-15-standard-released-extended-range-and-new-features/
https://www.gizchina.com/2025/06/19/nfc-15-standard-released-extended-range-and-new-features/