Forwarded from vx-underground
Crazy Thursday.
- Dr. Web, the Russian antivirus company, disclosed a breach. Dr. Web stopped sending antivirus updates September 16th. Subsequently, Dr. Web reportedly disconnected their servers from their internal network while they investigated the suspected compromise. Dr. Web reports to have resolved the issue and has returned to normal day-to-day operations. No Threat Actor has been attributed to the compromise. They believe the compromise occurred on or around September 14th.
- Yesterday, or sometime before, GitHub users were targeted in mass by a large scale phishing and/or malware campaign. An unknown Threat Actor(s) pushed their Lumma Stealer campaign by leaving bogus issues on GitHub projects. When the project owner visited the issue, the issue linked to a domain titled 'GitHub-Scanner'. GitHub-Scanner requested the visitor prove their humanity (e.g. not a robot) by doing Windows + R and CTRL + V + ENTER. When the site is visited, the website copies malicious code to the users clipboard. Windows + R, opening Windows Run, and CTRL + V, pasting the malicious code to the Run window and ENTER would run the code, this would trick the user into executing their malware payload. Once the payload is executed, it downloads a file called 'IE6.exe'. IE6.exe is Lumma information stealer. While it is a clever trick, the Threat Actor(s) (intentionally, or unintentionally) did not account for users who are not running Windows. This caused confusion for non-Windows users, or users on mobile devices.
- Dr. Web, the Russian antivirus company, disclosed a breach. Dr. Web stopped sending antivirus updates September 16th. Subsequently, Dr. Web reportedly disconnected their servers from their internal network while they investigated the suspected compromise. Dr. Web reports to have resolved the issue and has returned to normal day-to-day operations. No Threat Actor has been attributed to the compromise. They believe the compromise occurred on or around September 14th.
- Yesterday, or sometime before, GitHub users were targeted in mass by a large scale phishing and/or malware campaign. An unknown Threat Actor(s) pushed their Lumma Stealer campaign by leaving bogus issues on GitHub projects. When the project owner visited the issue, the issue linked to a domain titled 'GitHub-Scanner'. GitHub-Scanner requested the visitor prove their humanity (e.g. not a robot) by doing Windows + R and CTRL + V + ENTER. When the site is visited, the website copies malicious code to the users clipboard. Windows + R, opening Windows Run, and CTRL + V, pasting the malicious code to the Run window and ENTER would run the code, this would trick the user into executing their malware payload. Once the payload is executed, it downloads a file called 'IE6.exe'. IE6.exe is Lumma information stealer. While it is a clever trick, the Threat Actor(s) (intentionally, or unintentionally) did not account for users who are not running Windows. This caused confusion for non-Windows users, or users on mobile devices.
π’28π10π¨5π2π2π€¨1
This media is not supported in your browser
VIEW IN TELEGRAM
Funfact: Making cows wear VR headsets increases milk yields by 22%
In some countries, for example in Russia, farmers put VR headsets on their cows during winters because when it snows, the ground gets covered and thus cows cannot graze on green fields which stresses them out and decreases their milk yields.
The VR headsets show them beautiful green fields landscapes, relaxing the cows. This method ended up increasing the milk production by 22% in winters
Follow @TechLeaksZone
In some countries, for example in Russia, farmers put VR headsets on their cows during winters because when it snows, the ground gets covered and thus cows cannot graze on green fields which stresses them out and decreases their milk yields.
The VR headsets show them beautiful green fields landscapes, relaxing the cows. This method ended up increasing the milk production by 22% in winters
Follow @TechLeaksZone
π€£135π12π’12β7π€‘6π5πΏ3β€2π₯°2π1π1
Forwarded from ATT β’ Tech News (Agam)
Pavel Durov
IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal requests.
Telegram to Share User Information with Law Enforcement
Durov has announced that Telegram will now share the IP addresses and phone numbers of users who violate its policies with law enforcement in response to valid legal requests.
This is kinda disappointing, especially since Telegram was originally meant to be a private messaging app. It seems like the platform isn't as secure or private as it used to be.
π @durov
π§βπ» @agamtechtricks
Durov has announced that Telegram will now share the IP addresses and phone numbers of users who violate its policies with law enforcement in response to valid legal requests.
This is kinda disappointing, especially since Telegram was originally meant to be a private messaging app. It seems like the platform isn't as secure or private as it used to be.
Please open Telegram to view this post
VIEW IN TELEGRAM
π’98π€‘41π11π€¬7π6π₯2β1π1π€£1π1
Forwarded from Nekogram
Telegram has banned this channel from global search, along with @NekogramAPKs.
π€‘57π¨4
Forwarded from π¬ππππ
And Cherrygram channels, Octogram and other forks channels too
π€―45π€‘17π€1π1
Although the Pixel 9 Pro is already available to purchase in many countries like the US, however, atleast in India, Pixel 9 Pro will go on sale in November.
( 3 months late from the August release)
Follow @TechLeaksZone
( 3 months late from the August release)
Follow @TechLeaksZone
π€‘63π€£8π6
Forwarded from Nekogram
Telegram changed it's privacy policy and terms of services:
Privacy policy changed mainly from
to
Privacy policy changed mainly from
If Telegram receives a court order that confirms you're a terror suspect, we may disclose your IP address and phone number to the relevant authorities.
to
If Telegram receives a valid order from the relevant judicial authorities that confirms you're a suspect in a case involving criminal activities that violate the Telegram Terms of Service, we will perform a legal analysis of the request and may disclose your IP address and phone number to the relevant authorities.Telegram ToS added a new line:
Use our service to send spam or scam users.
Promote violence on publicly viewable Telegram channels, bots, etc.
Post illegal pornographic content on publicly viewable Telegram channels, bots, etc.
NEW: Engage in activities that are recognized as illegal in the majority of countries. This includes child abuse, selling or offering illegal goods and services (drugs, firearms, forged documents), etc.
π75π18β‘8π€‘6β2π1
Forwarded from vx-underground
Kaspersky antivirus has reportedly begun silently installing a new antivirus product called "Ultra AV" on United States-based users machines.
tl;dr
tl;dr
π65π€£46π2π1
Two Motorola G34 Smartphone Blasts Reported This Month
A twitter user on 5th September shared images of a blasted Moto G34 5G smartphone thatβs barely of any use. He has also shared a bill that shows that the smartphone was bought in July of this year for Rs. 12,500 (~150$) having 8GB RAM with 128GB storage.
Now, today, another user shared of a Motorola G34 which caught fire and it melted. There are NO details as how this incident occured in both the cases but its' quite terrifying
Follow @TechLeaksZone
A twitter user on 5th September shared images of a blasted Moto G34 5G smartphone thatβs barely of any use. He has also shared a bill that shows that the smartphone was bought in July of this year for Rs. 12,500 (~150$) having 8GB RAM with 128GB storage.
Now, today, another user shared of a Motorola G34 which caught fire and it melted. There are NO details as how this incident occured in both the cases but its' quite terrifying
Follow @TechLeaksZone
π€‘47π±15π€£6π4π₯2π2π1
Samsung Galaxy Buds FE Explosion Causes Permanent Hearing Loss π’
A Turkish user has suffered permanent hearing loss after Samsung's Galaxy Buds FE suddenly exploded while in use. The earbuds were fresh out of the box, had 36% battery, and had not been charged even once since recently purchased by the user alongside Galaxy S23 Ultra.
The user claimed that the earbuds exploded while being used by his girlfriend, causing immediate and irreversible damage to her hearing. Following the explosion, the user took it to Samsung service center. After a two-day investigation, Samsung reportedly concluded that the buds had simply "deformed" rather than exploded. The service centre offered a replacement of the same model with a βtake it or leave itβ attitude & he is free to pursue legal action.
The user claims to have all necessary documentation, including the invoice, before-and-after photos of the device, and medical records linking his hearing loss to the explosion.
Follow @TechLeaksZone
A Turkish user has suffered permanent hearing loss after Samsung's Galaxy Buds FE suddenly exploded while in use. The earbuds were fresh out of the box, had 36% battery, and had not been charged even once since recently purchased by the user alongside Galaxy S23 Ultra.
The user claimed that the earbuds exploded while being used by his girlfriend, causing immediate and irreversible damage to her hearing. Following the explosion, the user took it to Samsung service center. After a two-day investigation, Samsung reportedly concluded that the buds had simply "deformed" rather than exploded. The service centre offered a replacement of the same model with a βtake it or leave itβ attitude & he is free to pursue legal action.
The user claims to have all necessary documentation, including the invoice, before-and-after photos of the device, and medical records linking his hearing loss to the explosion.
Follow @TechLeaksZone
π€―73π€‘13π’10π4π3π€£2π€1π1π¨1
This media is not supported in your browser
VIEW IN TELEGRAM
Winamp source code released online but with a catch
The iconic Winamp media player, launched in 1997 by Nullsoft, gained massive popularity while coinciding with the rise of MP3s music files. After Nullsoft's acquisition by AOL, its development slowed & in 2013, Winamp was discontinued. In 2014, new owner Radionomy took over the project intending to resume development. However, it failed to bring Winamp to its former glory & now after three decades, its source-code along with build tools, and associated libraries for the Windows app has been released on GitHub.
The kicker is that executables and changes to the code cannot be published. So the promise of βopen sourceβ has vanished. They have created their own license, the βWinamp Collaborative License (WCL) Version 1.0β :-
β’ No Distribution of Modified Versions whether in source or binary form.
β’ Cannot distribute a forked version.
β’ Only the maintainers of the official repo are allowed to distribute.
Follow @TechLeaksZone
The iconic Winamp media player, launched in 1997 by Nullsoft, gained massive popularity while coinciding with the rise of MP3s music files. After Nullsoft's acquisition by AOL, its development slowed & in 2013, Winamp was discontinued. In 2014, new owner Radionomy took over the project intending to resume development. However, it failed to bring Winamp to its former glory & now after three decades, its source-code along with build tools, and associated libraries for the Windows app has been released on GitHub.
The kicker is that executables and changes to the code cannot be published. So the promise of βopen sourceβ has vanished. They have created their own license, the βWinamp Collaborative License (WCL) Version 1.0β :-
β’ No Distribution of Modified Versions whether in source or binary form.
β’ Cannot distribute a forked version.
β’ Only the maintainers of the official repo are allowed to distribute.
Follow @TechLeaksZone
π€‘70π10π6π€ͺ1
Forwarded from vx-underground
Some controversy today as YouTube tech reviewer Marques Brownlee 'Panels' app is getting pretty substantial backlash.
tl;dr Marques Brownlee app, 'Panels', offers high-definition wallpapers from Digital Artists for $49.99/year. People criticized the app for an array of reasons, beside the idea of paying $49.99/year for wallpapers on your cell phone, the app requests tracking information, and contains ads.
Unsurprisingly, and as is tradition, internet nerds quickly began inspecting the app under the metaphorical microscope. Security researcher @I_Am_Jakoby discovered the apps API is wildly insecure. He wrote a simple script which programmatically scrapes every high-definition wallpaper.
Attached image is the script he shared. If you want to experiment with it, just OCR it or something.
tl;dr Marques Brownlee app, 'Panels', offers high-definition wallpapers from Digital Artists for $49.99/year. People criticized the app for an array of reasons, beside the idea of paying $49.99/year for wallpapers on your cell phone, the app requests tracking information, and contains ads.
Unsurprisingly, and as is tradition, internet nerds quickly began inspecting the app under the metaphorical microscope. Security researcher @I_Am_Jakoby discovered the apps API is wildly insecure. He wrote a simple script which programmatically scrapes every high-definition wallpaper.
Attached image is the script he shared. If you want to experiment with it, just OCR it or something.
π€£83β5π2
RIP Snapdragon 8 Gen 4, Welcome Snapdragon 8 Elite
Qualcomm changed its naming scheme, from using numbers like Snapdragon 870, 888 and now to using Generations like Snapdragon 8 Gen 1
Just after 3yrs, Qualcomm again has again changed its naming scheme. Snapdragon 8 Gen 4 will be known as Snapdragon 8 Elite and Xiaomi 15 series will be the first smartphone to be powered by the same.
Follow @TechLeaksZone
Qualcomm changed its naming scheme, from using numbers like Snapdragon 870, 888 and now to using Generations like Snapdragon 8 Gen 1
Just after 3yrs, Qualcomm again has again changed its naming scheme. Snapdragon 8 Gen 4 will be known as Snapdragon 8 Elite and Xiaomi 15 series will be the first smartphone to be powered by the same.
Follow @TechLeaksZone
π€·ββ112π€‘50π7πΏ7π6β2π1
Forwarded from Mishaal's Android News Feed
Circle to Search isn't rolling out for the Xiaomi 14T series until October 6...but I enabled it early π
It's pretty funny how I did it, too, lol. All I had to do was be on the right version of HyperOS and change the date to October 7.
It's pretty funny how I did it, too, lol. All I had to do was be on the right version of HyperOS and change the date to October 7.
π€£93π28π«‘5π4π€‘1π1π1