Прочитал две статьи о том, как у авторов уводили Телеграм-каналы. Схема одинаковая: тебе пишут якобы от имени какой-то известной фирмы с предложением заказать рекламу. Если ты соглашаешься, присылают ссылку на "Партнёрский кабинет", где нужно зарегистрироваться. Там спрашивают твой номер телефона и код из СМС, вот только СМС это авторизация в самом Телеграме. Вводишь код на сайт, с этого момента аккаунт потерян.
Что характерно:
1. Поддержка Телеграма просто игнорит юзеров. Судя по тому, что я о ней слышал, существует она номинально, если вообще существует. По крайней мере, поддержка для разработчиков ботов в какой-то момент перестала отвечать мне вообще, думаю, с обычной поддержкой то же самое. Зато команда Телеграма гордится тем, как мало у них людей в штате!
2. Попытки пользователя восстановить доступ обратно через свой телефон блокируются с помощью спама запросами. Злоумышленники начинают постоянно логиниться, и сервер Телеграма врубает защиту: "Слишком много попыток, попробуйте через сутки". То есть система, которая должна помогать хорошим и мешать плохим, делает ровно наоборот. Интересный кейс для собеседования на безопасника, мне кажется.
А так, конечно, всё ещё удивляют люди, которые ведут в интернете коммерческую деятельность, но не владеют даже базовыми навыками цифровой безопасности вроде "Везде включать 2FA" или "Смотреть в адресную строку".
#web
Nora-Desktop
Facebook, Instagram, Reddit, Threads and X in a single app. No ads. Features a deck view to easily browse multiple timelines. Linux, Android, macOS, Windows versions are available. (GNU GPL3)
Features
1. No ads
2. Download image
3. Download fb/ig/x video
4. Select text
5. Zoom
6. Remove tracking url query params
Supported SNS (Social-Networking-Sites)
1. Bluesky
2. Facebook
2. Instagram
4. LinkedIn
5. Reddit
4. Threads
5. TikTok
6. Tumblr
7. VK
8. X (Twitter)
How it works
Wrap the SNS websites in Android webview
Inject code to block ads
Get it on GITHUB : https://github.com/nonbili/Nora-Desktop
Get it on F-DROID (main repo) - https://f-droid.org/packages/jp.nonbili.nora/
Also available on gulag store
Disclaimer : we don't promote any of those zionist occupied censored websites and apps and are firmly against using them as they are nothing but #spyware designed to make people dumb
Windows reference manual
If you suddenly find you have Windows on your hard drive:
- dd if=/dev/zero of=/dev/[drive]
- burning causes pollution so just call an exorcist
General:
- https://rentry.co/fwt
- https://t.me/NoGoolag/2549
- https://tb.rg-adguard.net/public.php
- https://github.com/jebofponderworthy/windows-tools
- https://github.com/massgravel/Microsoft-Activation-Scripts
App managers:
- https://chocolatey.org
- https://scoop.sh
- https://store.rg-adguard.net
Telemetry:
-https://docs.microsoft.com/en-us/windows/privacy/manage-connections-from-windows-operating-system-components-to-microsoft-services
- https://docs.microsoft.com/en-us/windows/privacy/configure-windows-diagnostic-data-in-your-organization
- https://github.com/mirinsoft/debotnet
- https://github.com/Sycnex/Windows10Debloater
Security reference:
- https://docs.microsoft.com/en-us/windows/security
- Use Enterprise edition. It has a lot more security features.
- Use Virtualization Based Security to stop stuff like mimikatz or capcom.sys
- https://github.com/beerisgood/Windows10_Hardening
- https://www.microsoft.com/security/blog/2020/03/17/secured-core-pcs-a-brief-showcase-of-chip-to-cloud-security-against-kernel-attacks/
- https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/applocker/using-software-restriction-policies-and-applocker-policies
- https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings#a-href-idbkmk-unlockpol1arequire-additional-authentication-at-startup
- https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/controlled-folders
-https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-application-guard/md-app-guard-overview
- User accounts is part of the windows security model, its better to use an admin account only when you need it rather than 24/7
#windows#spyware
🛑 WhatsApp alerted ~200 users targeted by a fake iOS app carrying #spyware, mostly in Italy.
The attack used social engineering to mimic #WhatsApp. Meta is acting against an Italian firm linked to the spyware.
🔗 Read details here → https://thehackernews.com/2026/04/whatsapp-alerts-200-users-after-fake.html
https://lnkd.in/e25HNh7A
Alhamdulillah, I finished writing this book in few days.
I wrote this book to help my friends:
Nurkhankyzy Aiya, Acute myeloid leukemia (AML).
and all those children who are fighting for their lives.
Why is the book called that? AIYA MMD - means Attack and Introduction or (Android and IOS), start Your Adventure in Mobile Malware Development. also AIYA means AIYA Nurkhankyzy.
I will be very happy if this book helps at least one person to gain knowledge and learn the science of cybersecurity. The book is mostly practice oriented.
Of course the book is not as big as my previous works, this is because firstly I needed to urgently start a fundraising campaign for the Aiya and secondly many things remain confidential (NDA)
Mobile malware - it's a constantly evolving battlefield. What you learned here is just the beginning. Tools change, defenses adapt, but the mindset stays the same: think like the adversary to build stronger defenses.
This book is dedicated to my wife, Laura, and my children, Yerzhan and Munira. I would like to express my deep gratitude to my friends and colleagues.
Special thanks to #Russian#hacking#community, Medet Turin 2600.kz, BlackIce #hackerspace from Almaty (Kazakhstan) and my friends from Middle East countries: Kingdom of Bahrain, Kingdom of Saudi Arabia, UAE.
All examples are practical cases for educational and research purposes only.
Book design by: Muhammad Patel
twitter: https://x.com/cocomelonckz/status/1924724518951457229
#hacking#mobile#malware#research#book#programming#android#ios#rat#spyware
https://lnkd.in/e25HNh7A
Alhamdulillah, I finished writing this book in few days.
I wrote this book to help my friends:
Nurkhankyzy Aiya, Acute myeloid leukemia (AML).
and all those children who are fighting for their lives.
Why is the book called that? AIYA MMD - means Attack and Introduction or (Android and IOS), start Your Adventure in Mobile Malware Development. also AIYA means AIYA Nurkhankyzy.
I will be very happy if this book helps at least one person to gain knowledge and learn the science of cybersecurity. The book is mostly practice oriented.
Of course the book is not as big as my previous works, this is because firstly I needed to urgently start a fundraising campaign for the Aiya and secondly many things remain confidential (NDA)
Mobile malware - it's a constantly evolving battlefield. What you learned here is just the beginning. Tools change, defenses adapt, but the mindset stays the same: think like the adversary to build stronger defenses.
This book is dedicated to my wife, Laura, and my children, Yerzhan and Munira. I would like to express my deep gratitude to my friends and colleagues.
Special thanks to #Russian#hacking#community, Medet Turin 2600.kz, BlackIce #hackerspace from Almaty (Kazakhstan) and my friends from Middle East countries: Kingdom of Bahrain, Kingdom of Saudi Arabia, UAE.
All examples are practical cases for educational and research purposes only.
Book design by: Muhammad Patel
twitter: https://x.com/cocomelonckz/status/1924724518951457229
#hacking#mobile#malware#research#book#programming#android#ios#rat#spyware