Forwarded from exploit.org
SECURITY ALERT โ ๏ธ
Possible RCE was detected in Telegram's media processing on Windows platform.
This issue expose users to malicious attacks through specially crafted media files, such as images or videos.
For security reasons disable auto-download feature. Please follow these steps:
1. Go to Settings.
2. Tap on Data and Storage.
3. Under the Automatic Media Download section, disable auto-download for "Photos", "Videos", and "Files" across all network types (Mobile Data, Wi-Fi, and Roaming).
Possible RCE was detected in Telegram's media processing on Windows platform.
This issue expose users to malicious attacks through specially crafted media files, such as images or videos.
For security reasons disable auto-download feature. Please follow these steps:
1. Go to Settings.
2. Tap on Data and Storage.
3. Under the Automatic Media Download section, disable auto-download for "Photos", "Videos", and "Files" across all network types (Mobile Data, Wi-Fi, and Roaming).
โค14๐8โก5๐ฑ4๐คฃ3๐2๐จ2๐1
Forwarded from CODER [ blog in bio๐ท ]
This media is not supported in your browser
VIEW IN TELEGRAM
๐ฑ27๐ค5๐คก5๐2๐2๐1๐คฃ1๐จ1๐พ1
Forwarded from iDubTG
A new post by the engineering group @exploitorg states that a possible RCE or "breach" of sorts, was found in Telegram for Desktop, causing users to worry.
Although this is indeed a "flaw", a fundamental fact was left unmentioned. When a message of this kind is sent to an unsuspecting user on TDesktop, there is a prompt that is displayed before the program is allowed to run at all, which specifically states "This file has the extension .exe. It may harm the computer." wherein the user is told if they are certain they wish to run the program, followed by an option to either allow or prevent the computer from executing the unknown exe.
This means that the program is not run without the users intent. The program will only run if the user accepts the prompt. Additionally, this prompt will always display every time the file is loaded; it will only disappear if the user specifically chooses to select "Don't ask me again", which is what the engineering group did in the video.
Please open Telegram to view this post
VIEW IN TELEGRAM
๐9๐คฃ3
Forwarded from iDubTG
The picture that this post was referencing was not made by the engineering group, and is completely unrelated to the vulnerability discovered by @exploitorg.
See https://t.me/iDubTGDiscussions/4755 for more info by a member of the engineering group.
Please open Telegram to view this post
VIEW IN TELEGRAM
Telegram
byteduck in iDubTG - Discussions Group
Yes.
We were talking about this video.
You can clearly see media type there - Photo.
The thing you are explained actually relates to .exe file, which was uploaded as video.
We were talking about this video.
You can clearly see media type there - Photo.
The thing you are explained actually relates to .exe file, which was uploaded as video.
๐4
Forwarded from iDubTG
This media is not supported in your browser
VIEW IN TELEGRAM
Update Preview
๐18๐7โค3
iDubTG
Update Preview
Sticker Editor Coming Soon ๐
Telegram
TGBlogLeaks
PREVIEW OF IN-APP STICKER CREATOR ON TELEGRAM FOR ANDROID
๐20โค7๐ฅฐ4๐ฅ1๐คฏ1
Forwarded from iDubTG
New prompts that notify you if your Telegram Premium subscription is expiring.
๐15
The last thing Telegram for Android was missing were changelogs with emojis to guess ๐คฆโโ๏ธ /s
๐คฃ16๐2
CHANNELS YOU JOINED AND RECOMMENDED CHANNELS IN EMPTY SEARCH
๐คจ13โค3๐1๐1๐ค1๐คฃ1