Forwarded from 𝗽𝗼𝗽𝗠𝗢𝗗𝗦 | 𝗙𝗢𝗦𝗦, 𝗟𝗶𝗳𝗲, 𝗠𝗲𝗺𝗲𝘀 (Ömer)
Did you know you can use Gemini as an OCR, translator and annotator in Cherrygram?
Get your API key from aistudio.google.com, Then go to Cherrygram Preferences > Chats > Gemini AI, and enter the API key that you got from Google AI Studio
Note: You need Cherrygram Beta build to use latest features of Gemini.
🏷️ Tags: #Android #AI #Telegram #Guides
Get your API key from aistudio.google.com, Then go to Cherrygram Preferences > Chats > Gemini AI, and enter the API key that you got from Google AI Studio
Note: You need Cherrygram Beta build to use latest features of Gemini.
🏷️ Tags: #Android #AI #Telegram #Guides
Forwarded from 𝗽𝗼𝗽𝗠𝗢𝗗𝗦 | 𝗙𝗢𝗦𝗦, 𝗟𝗶𝗳𝗲, 𝗠𝗲𝗺𝗲𝘀 (ZGX089ッ)
ApkToolGUI
a tool for reverse engineering 3rd party, closed, binary Android apps. It makes possible to debug smali code step by step. Also it makes working with app easier because of project-like files structure and automation of some repetitive tasks like building apk, etc.
🔗Links
- Download
- Requirements
- Features
- Screenshot
- Source code
Developer: AndnixSH
❤️ Thanks to @SC1444 for app recommendation!
🏷 Tags: #Windows #Utilities
a tool for reverse engineering 3rd party, closed, binary Android apps. It makes possible to debug smali code step by step. Also it makes working with app easier because of project-like files structure and automation of some repetitive tasks like building apk, etc.
🔗Links
- Download
- Requirements
- Features
- Screenshot
- Source code
Developer: AndnixSH
❤️ Thanks to @SC1444 for app recommendation!
🏷 Tags: #Windows #Utilities
Forwarded from Gizchina.com
Redmi K80 Pro Transformed into a Powerful Handheld Console by Chinese Modder
https://www.gizchina.com/2025/03/27/redmi-k80-pro-transformed-into-a-powerful-handheld-console-by-chinese-modder/
https://www.gizchina.com/2025/03/27/redmi-k80-pro-transformed-into-a-powerful-handheld-console-by-chinese-modder/
Forwarded from It's FOSS
AerynOS 2025.03 is the first release following the Serpent OS rebranding.
https://news.itsfoss.com/aerynos-2025-03/
https://news.itsfoss.com/aerynos-2025-03/
It's FOSS News
Serpent OS Sheds its Skin to Evolve into AerynOS
Serpent OS has successfully rebranded into AerynOS with a new release.
Forwarded from The Hacker News
🚨 One click from insider to admin?
A critical flaw in NetApp SnapCenter (CVE-2025-26512, CVSS 9.9) lets authenticated users escalate privileges to full admin—on remote systems.
SnapCenter powers enterprise backups—this isn’t niche, it’s everywhere.
🔗Read: https://thehackernews.com/2025/03/netapp-snapcenter-flaw-could-let-users.html
A critical flaw in NetApp SnapCenter (CVE-2025-26512, CVSS 9.9) lets authenticated users escalate privileges to full admin—on remote systems.
SnapCenter powers enterprise backups—this isn’t niche, it’s everywhere.
🔗Read: https://thehackernews.com/2025/03/netapp-snapcenter-flaw-could-let-users.html
Forwarded from The Hacker News
👀 6-year-old bugs are back—and being weaponized.
CISA just flagged two 2019 Sitecore RCE flaws (CVE-2019-9874 & 9875) as actively exploited.
But it doesn’t stop there:
➡️ Next.js auth bypass (CVE-2025-29927) is under live attack
➡️ DrayTek routers face fresh waves targeting old RCE/LFI bugs.
🔗 Details: https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html
Old CVEs. New exploits. Patch now.
CISA just flagged two 2019 Sitecore RCE flaws (CVE-2019-9874 & 9875) as actively exploited.
But it doesn’t stop there:
➡️ Next.js auth bypass (CVE-2025-29927) is under live attack
➡️ DrayTek routers face fresh waves targeting old RCE/LFI bugs.
🔗 Details: https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html
Old CVEs. New exploits. Patch now.
Forwarded from The Hacker News
🚨 150,000+ websites hijacked. Millions redirected.
Hackers are injecting malicious JavaScript into legit sites to push Chinese-language gambling ads—using fake Bet365 branding, fullscreen overlays, and iframe tricks.
🔗 Full story: https://thehackernews.com/2025/03/150000-sites-compromised-by-javascript.html
Hackers are injecting malicious JavaScript into legit sites to push Chinese-language gambling ads—using fake Bet365 branding, fullscreen overlays, and iframe tricks.
🔗 Full story: https://thehackernews.com/2025/03/150000-sites-compromised-by-javascript.html
Forwarded from The Hacker News
🔥 Still opening Office docs without checking? In 2025, that’s a major risk.
Hackers still use Word and Excel to deliver malware—no macros, no clicks.
Top threats: Phishing docs, fake logins, QR traps.
🛡️ Scan before you open. Learn more: https://thehackernews.com/2025/03/top-3-ms-office-exploits-hackers-use-in.html
Hackers still use Word and Excel to deliver malware—no macros, no clicks.
Top threats: Phishing docs, fake logins, QR traps.
🛡️ Scan before you open. Learn more: https://thehackernews.com/2025/03/top-3-ms-office-exploits-hackers-use-in.html
Forwarded from The Hacker News
🚨 Fake India Post site used to hack Windows & Android users!
APT36 (aka Transparent Tribe), linked to Pakistan, is behind a phishing site—postindia[.]site—targeting Indian citizens 🇮🇳
👉 Details that matter → https://thehackernews.com/2025/03/apt36-spoofs-india-post-website-to.html
💡 Stay sharp, don’t click blind.
APT36 (aka Transparent Tribe), linked to Pakistan, is behind a phishing site—postindia[.]site—targeting Indian citizens 🇮🇳
👉 Details that matter → https://thehackernews.com/2025/03/apt36-spoofs-india-post-website-to.html
💡 Stay sharp, don’t click blind.
Forwarded from The Hacker News
🛑 Shadow SaaS is your biggest blind spot—and CASB can’t save you.
New report reveals why traditional CASB tools fail to detect or stop unsanctioned apps, identity leaks, and data exfiltration.
🔍 80% of SaaS use is shadow IT
⚠️ API scanners can’t block live attacks
🧠 The fix? Security at the browser level
📄 Read the report: https://thehackernews.com/2025/03/new-report-explains-why-casb-solutions.html
New report reveals why traditional CASB tools fail to detect or stop unsanctioned apps, identity leaks, and data exfiltration.
🔍 80% of SaaS use is shadow IT
⚠️ API scanners can’t block live attacks
🧠 The fix? Security at the browser level
📄 Read the report: https://thehackernews.com/2025/03/new-report-explains-why-casb-solutions.html
Forwarded from The Hacker News
🔥 Ransomware cartels are sharing weapons.
A custom EDR killer tool—EDRKillShifter—built by RansomHub is now turning up in attacks by Medusa, BianLian, and Play, per ESET.
Used to silently shut down security defenses via a BYOVD attack—before encrypting your systems.
Even “closed” RaaS gangs like BianLian are repurposing tools from rivals.
🔗 Read full report: https://thehackernews.com/2025/03/hackers-repurpose-ransomhubs.html
A custom EDR killer tool—EDRKillShifter—built by RansomHub is now turning up in attacks by Medusa, BianLian, and Play, per ESET.
Used to silently shut down security defenses via a BYOVD attack—before encrypting your systems.
Even “closed” RaaS gangs like BianLian are repurposing tools from rivals.
🔗 Read full report: https://thehackernews.com/2025/03/hackers-repurpose-ransomhubs.html
Forwarded from 𝗽𝗼𝗽𝗠𝗢𝗗𝗦 | 𝗙𝗢𝗦𝗦, 𝗟𝗶𝗳𝗲, 𝗠𝗲𝗺𝗲𝘀 (Ömer)
Oblivion - Unofficial Warp Client for Android
Provides secure, optimized internet access through a user-friendly Android app using cloudflare warp technology, leveraging bepass-sdk and a custom Go implementation of WireGuard, designed for fast and private online experiences.
🔗 Links:
- Download
- Screenshots
- Features
- Source code
Developer: bepass-org
❤️ Special thanks to @rizkym2999 for recommending!
🏷️ Tags: #Android #Tools #Connectivity
Provides secure, optimized internet access through a user-friendly Android app using cloudflare warp technology, leveraging bepass-sdk and a custom Go implementation of WireGuard, designed for fast and private online experiences.
🔗 Links:
- Download
- Screenshots
- Features
- Source code
Developer: bepass-org
❤️ Special thanks to @rizkym2999 for recommending!
🏷️ Tags: #Android #Tools #Connectivity
Forwarded from The Hacker News
🚨 Phishing just got personal.
A PhaaS kit called Morphing Meerkat fakes login pages for 114+ brands—using your DNS MX records to mimic your email provider (Gmail, Outlook, Yahoo).
It’s global, stealthy, and drops stolen creds via Telegram.
👀 Uses WordPress hacks, ad redirects (even DoubleClick), and blocks right-clicks + hotkeys.
🔗 Read: https://thehackernews.com/2025/03/new-morphing-meerkat-phishing-kit.html
A PhaaS kit called Morphing Meerkat fakes login pages for 114+ brands—using your DNS MX records to mimic your email provider (Gmail, Outlook, Yahoo).
It’s global, stealthy, and drops stolen creds via Telegram.
👀 Uses WordPress hacks, ad redirects (even DoubleClick), and blocks right-clicks + hotkeys.
🔗 Read: https://thehackernews.com/2025/03/new-morphing-meerkat-phishing-kit.html
Forwarded from Android Security & Malware
A Blueprint of Android Activity Lifecycle
https://8ksec.io/a-blueprint-of-android-activity-lifecycle/
https://8ksec.io/a-blueprint-of-android-activity-lifecycle/
8kSec - 8kSec is a cybersecurity research & training company. We provide high-quality training & consulting services.
A Blueprint of Android Activity Lifecycle - 8kSec
Introduction The Android Activity lifecycle is a sequence of state changes and callbacks that every Android Activity goes through from creation to destruction.Understanding the Android Activity lifecycle is important not only for developers aiming to build…