Comprehensive technical analysis of the MitM attack in the "Telega" app
On the 18th of March creators of a third-party Telegram client called “Telega” activated a hidden feature that enables interception of all traffic between users of their applications and Telegram servers by putting it through servers controlled by them.
Unfortunately, there’s not much info about that, so we’ve made this article with a comprehensive and reproducible analysis of malicious behaviour.
https://dontusetelega.lol/analysis-en
On the 18th of March creators of a third-party Telegram client called “Telega” activated a hidden feature that enables interception of all traffic between users of their applications and Telegram servers by putting it through servers controlled by them.
Unfortunately, there’s not much info about that, so we’ve made this article with a comprehensive and reproducible analysis of malicious behaviour.
https://dontusetelega.lol/analysis-en
🥰4👍1
Media is too big
VIEW IN TELEGRAM
Iranian monarchists say girl's school bombing was "worth it," call for American ground invasion of Iran
💔44🤯4👎2🔥2❤1🥰1
Forwarded from Source Byte
< Scam Alert >
New Threat Actor steal famous "IrLeaks" support ID after their support account been inactive for a while ( their account deleted automatically ) , as i look at my archives this is previous accounts you can use to verify them :
[ + ] Exploit[.]in MemberID :
[ + ] BreachForums UserID :
[ + ] BreachForums Email address :
( Creation time:
[ + ] Telegram channel :
[ + ] Telegram Support :
[ + ] Email address :
New Threat Actor steal famous "IrLeaks" support ID after their support account been inactive for a while ( their account deleted automatically ) , as i look at my archives this is previous accounts you can use to verify them :
[ + ] Exploit[.]in MemberID :
150525 ( Last visited : September 7, 2024 )[ + ] BreachForums UserID :
46196[ + ] BreachForums Email address :
irleaks@proton.me ( Creation time:
1696708552 , Last update: 1710784785 )[ + ] Telegram channel :
1948656476[ + ] Telegram Support :
5128567513 <deleted>[ + ] Email address :
irleaks@tuta.io❤8
Source Byte
< Scam Alert > New Threat Actor steal famous "IrLeaks" support ID after their support account been inactive for a while ( their account deleted automatically ) , as i look at my archives this is previous accounts you can use to verify them : [ + ] Exploit[.]in…
be aware of scammers !
👍4👾3
Forwarded from CyberSecurityTechnologies
Kernel_Debugging_Filesystem_Minifilters.pdf
776.9 KB
#Whitepaper
#Kernel_Security
#Offensive_security
"Debugging Filesystem Minifilters with WinDbg", 2026.
// This technical reference poster explores Windows filesystem minifilters, kernel debugging, and filter communication ports from a red team perspective
#Kernel_Security
#Offensive_security
"Debugging Filesystem Minifilters with WinDbg", 2026.
// This technical reference poster explores Windows filesystem minifilters, kernel debugging, and filter communication ports from a red team perspective
🔥4
Forwarded from Infosec Fortress
Hacefresko
From breaking into my ISP router to finding a MediaTek kernel 0day
From breaking into my ISP router to finding a MediaTek kernel 0day
🔗 Link
#exploitation
#kernel
#linux
#mediatek
#zyxel
———
🆔 @Infosec_Fortress
🔗 Link
#exploitation
#kernel
#linux
#mediatek
#zyxel
———
🆔 @Infosec_Fortress
🔥5❤1
Infosec Fortress
From breaking into my ISP router to finding a MediaTek kernel 0day 🔗 Link #exploitation #kernel #linux #mediatek #zyxel ——— 🆔 @Infosec_Fortress
This media is not supported in your browser
VIEW IN TELEGRAM
Forwarded from OnHex
CSWF.pdf
1.2 MB
🔴 مرکز فرماندهی عملیات امنیت سایبری سندی با عنوان "چارچوب ملی سرمایه انسانی امنیت سایبری ایران" در کانال بله اشون منتشر کرده.
#ایران #مرکز_فرماندهی_عملیات_امنیت_سایبری
🆔 @onhex_ir
🌍 ONHEXGROUP (Official Links)
یکی از چالشهای عمده حوزه امنیت سایبری کشورها و به طور خاص ایران، کمبود نیروی متخصص و شکاف مهارتی در این حوزه و نیز فقدان نقشهراهی مدون در خصوص مسیرهای شغلی و مقتضیات آن میباشد. این چارچوب با در نظر گرفتن زیستبوم و نیازهای واقعی کشور و با هدف ایجاد یک زبان مشترک و ساختاری منسجم طراحی شده است.
در این چارچوب، مجموعاً ۱۳ عنوان شغلی اصلی که برای وضعیت کنونی کشور و نیاز کلیدی سازمانها و شرکتها مبتلابه هستند، استخراج و وظایف، دانش تخصصی و مهارتهای هر یک به طور شفاف تشریح شده است.
#ایران #مرکز_فرماندهی_عملیات_امنیت_سایبری
🆔 @onhex_ir
🌍 ONHEXGROUP (Official Links)
🗿5👎2❤1
Trend Micro Deep Security Agent Research: Forcing bmhook/tmhook Reloads to Open a Protection Bypass Window
https://matheuzsecurity.github.io/hacking/trendmicro-bmhook-tmhook-reload-bypass/
https://matheuzsecurity.github.io/hacking/trendmicro-bmhook-tmhook-reload-bypass/
❤3
Source Byte
be aware of scammers !
this scammer is trying to mimic original threat actor , now they own irleaks@tuta.io , how? cuz tuta will delete your account after 6 month of inactivity :)
Forwarded from Source Byte
< Scam Alert >
New Threat Actor steal famous "IrLeaks" telegram support ID & tuta mail after their support account been inactive for a while ( their accounts deleted automatically due to privacy policy ) , as i look at my archives this is previous accounts you can use to verify them :
[ + ] Exploit[.]in MemberID :
[ + ] BreachForums UserID :
[ + ] BreachForums Email address :
( Creation time:
[ + ] Telegram channel :
[ + ]Telegram Support : <deleted>
[ + ]Email address :
New Threat Actor steal famous "IrLeaks" telegram support ID & tuta mail after their support account been inactive for a while ( their accounts deleted automatically due to privacy policy ) , as i look at my archives this is previous accounts you can use to verify them :
[ + ] Exploit[.]in MemberID :
150525 ( Last visited : September 7, 2024 )[ + ] BreachForums UserID :
46196[ + ] BreachForums Email address :
irleaks@proton.me ( Creation time:
1696708552 , Last update: 1710784785 )[ + ] Telegram channel :
1948656476[ + ]
5128567513[ + ]
irleaks@tuta.io <deleted by tuta policy>❤6