Investigating the Discord Exploit that Leaks Your IP!

  Рет қаралды 1,538,508

No Text To Speech

No Text To Speech

Күн бұрын

Пікірлер: 2 600
@NoTextToSpeech
@NoTextToSpeech 9 ай бұрын
Update: Restorecord was in on it the whole time. They added the code that allowed people to get IPs from users github.com/restorecord-oss/restorecord-new edit: Restorecord DMCA'd the repo to try and prevent people from seeing it. Here's an archive archive.is/DhUUT Also the IP ping statement: I made it a joke because cordkiller's first video didn't show them open up any tool, it was IP straight to command prompt. In their later ads they actually show them putting the IP into a tool and using command prompt to monitor if the IP is down.
@InfinityDBL
@InfinityDBL 9 ай бұрын
First?
@SpectacularAustin
@SpectacularAustin 9 ай бұрын
That is insane! Discord should’ve done something about this a long time ago since only scammers use this service.
@hi-bk5fe
@hi-bk5fe 9 ай бұрын
hi
@Mr45Rabbit
@Mr45Rabbit 9 ай бұрын
dang
@s1nt3r
@s1nt3r 9 ай бұрын
@@InfinityDBL i liked the comment first then
@nohalo3forme
@nohalo3forme 9 ай бұрын
My favorite bit is that the “lifetime” subscription only lasts 9,999 days
@TheFloridaMonkey
@TheFloridaMonkey 9 ай бұрын
thats infosecs lifetime, the owner has smoker lungs
@nothomebutnotreally3782
@nothomebutnotreally3782 9 ай бұрын
@@osparavI’d imagine they’d assassinate you so *technically* it lasted a lifetime
@Kero-zc5tc
@Kero-zc5tc 9 ай бұрын
@@osparavwhich someone could actually get through
@piberaroo
@piberaroo 9 ай бұрын
They will kill you on day 10k
@Arctis1000
@Arctis1000 9 ай бұрын
@@TheFloridaMonkeyyour hopes are too high
@SOS-BFV
@SOS-BFV 9 ай бұрын
I already know my ip address. Sorry scammers, better luck next time!
@mugitude
@mugitude 9 ай бұрын
please never ever comment again
@SMG5RO_old
@SMG5RO_old 9 ай бұрын
o ma gaaaa@@mugitude
@mirozo
@mirozo 9 ай бұрын
so true, cuz like what can they do with it. its just IP edit: any1 who will comment some bs, please restrain yourself, most of u dont have a clue what reu talkin about
@MemphisShyt
@MemphisShyt 9 ай бұрын
i agree, please NEVER EVER comment again
@user_x6037
@user_x6037 9 ай бұрын
Proof Tell me your ip
@Signupking
@Signupking 9 ай бұрын
Sage is the winner in this situation, not only is he the main character of this story but he also got paid for snitching everyone involved.
@isaac_marcus
@isaac_marcus 7 ай бұрын
Reminds me of Let's Game It Out's playthrough of Tech Support Error Unknown, where he just said yes to everything, forwarded all the emails to each of the other factions, blackmailed all the customers, got in serious trouble, got repeatedly promoted, and I think in the end saved the day.
@SauceyRedHN
@SauceyRedHN 3 ай бұрын
@@isaac_marcusNever heard of the channel or game, but I’ll check them out.
@Note_Cubes
@Note_Cubes 2 ай бұрын
Sage is not a winner he would never be one and if he was one he would be a lousy lazy unloved winner with no friends why because he ate them
@dimsumboy22
@dimsumboy22 28 күн бұрын
@@isaac_marcuswild legs game it out reference
@wChris_
@wChris_ 9 ай бұрын
Not disclosing a data breach can get you a pretty hefty fine in the EU under the GDPR, if someone where to report them.
@_BangDroid_
@_BangDroid_ 9 ай бұрын
And everything else they're doing can get them not just fines but criminal indictments in most jurisdictions. I don't think they care about GDPR compliance.
@authgg
@authgg 9 ай бұрын
the owner xenos and admin zebratic both are commit fraud so they don't care anyways
@codegeek98
@codegeek98 8 ай бұрын
I can't wait for 16:43 on this very video to become a court exhibit where he stopped stonewalling and admitted finding out about the breach
@666222333111
@666222333111 8 ай бұрын
Yeah good luck with that. I tried reporting so many website for a bunch of shit and never gotten anywhere with it.
@authgg
@authgg 8 ай бұрын
@@666222333111 who did you report to though? the OP is talking about reporting to the government for GDPR violations. Since EU supposedly takes that seriously, and the operators of website are also in EU
@matt_hart
@matt_hart 9 ай бұрын
the database view at 15:30 is for planetscale and that screenshot doesn't show how many passwords exist. they'd have to click on the highlighted dropdown to view the existing passwords. in fact, i'd say that screenshot is proof that there are multiple passwords because the name of the password includes the date it was created, and unless restorecord started november 2023, that's not their first password. and not only that, but it's also pretty good reason to believe that they intentionally gave a password to inf0sec, if inf0sec started around november
@Wildcard65
@Wildcard65 8 ай бұрын
Actually, if Zeb had access to the web server's code or configuration, they could pull the credentials for the DB and reuse them somewhere else.
@keithharvey633
@keithharvey633 8 ай бұрын
​@@Wildcard65 Not to mention they could also easily make a duplicate record for every record put in the restorecord db going into another db, easily making a "live clone" of the database to a separate db, if for some reason they couldn't access the actual db creds. (such as if a 3rd party handler was being used for db read/writes)
@user-xl5kd6il6c
@user-xl5kd6il6c 8 ай бұрын
@@Wildcard65 tbh, this is more likely than anything else
@user_mycatWaffle
@user_mycatWaffle 5 ай бұрын
a little late, but i did a little bit of research and restorecord founded in 2020, so if the password was created in 2023 then how could they access it before? so i think you are right. edit: i don't know if this is just a coincidence the website was updated on the 25th of november 2023.
@Xoremak
@Xoremak 9 ай бұрын
xenos: "It is impossible for 2 people to possess a sigular password" 😑
@Noicer_wastaken
@Noicer_wastaken 9 ай бұрын
Just copy paste. 😂
@mcfixer9503
@mcfixer9503 9 ай бұрын
he might have meant that it's a single-use code like when u get a text and it's like "228708"
@supperEisMan
@supperEisMan 8 ай бұрын
Also all databases have activity logs which show all active sessions.... So he is either completely incompetent or complicit...
@mlgbeeler420
@mlgbeeler420 8 ай бұрын
Hell isnt that how everyone was using netflix? lol
@dimitralex1892
@dimitralex1892 8 ай бұрын
@@supperEisManprobably disabled logging for "security reasons"... obviously on the same day the ip leakers went online
@niceoneam012as
@niceoneam012as 9 ай бұрын
At this point it's not the fact that this feature needs to be removed it's just that RestoreCord needs to be replaced with a legit backup service lmao.
@McFlare
@McFlare 9 ай бұрын
true the backing up your server is a good idea but when it's used to get ip's of your members and sell your members data that is way to much
@attempting7766
@attempting7766 9 ай бұрын
@McFlare I heard that there bot called vaultcord that doesn't log your ip i might use that instead of restorecord now since these allegations are pretty heavy 😂
@niceoneam012as
@niceoneam012as 9 ай бұрын
@@McFlare True
@schwingedeshaehers
@schwingedeshaehers 9 ай бұрын
​@@McFlaresome things you can backup using templates
@maselitoamazigh1385
@maselitoamazigh1385 9 ай бұрын
i feel like its worse than a databreach , if it was the owner cant just turn it off like that , the sites would still have the data from the breach , feels more like the owner was in on it .
@NoFailer
@NoFailer 9 ай бұрын
I have to be a sweaty nerd about this: DDoS - Distributed Denial of Service - Multiple networks with multiple machines DoS - Denial of Service - one machine When people say the first one, they usually mean the second one.
@kuba4ful
@kuba4ful 9 ай бұрын
🤓 ☝ No but I'm with you on this one, it annoys me when people say DDoS when they mean DoS, and how they proceed to 🤓 ☝🤓 ☝🤓 ☝ you when you point it out 😭
@reallyneptune
@reallyneptune 9 ай бұрын
thanks a whole lot google searcher bot
@Yilmaz4
@Yilmaz4 9 ай бұрын
and even then, the ping command makes requests so slowly that you have to be completely ignorant to call it a DoS
@skilledcamman4752
@skilledcamman4752 9 ай бұрын
chill
@maskettaman1488
@maskettaman1488 9 ай бұрын
@@Yilmaz4 I sort of think the ping in the video was just a demonstration of the target going offline, not the attack itself
@HGStyleOfficiel
@HGStyleOfficiel 9 ай бұрын
something people often forgets is that an ip address is designed to be a public info, else it would not be shared with websites. the problem is not the ip address itself but your internet provider, because they may sell a database containing all the ips and their locations so people buying it can see people's location. some internet providers only tells the city, some tells the street, and maybe some (never seen this case) gaves the full address to your home. i have a friend who lives in france but has an internet provider that locates him in germany for some reason.
@Boyga_Official
@Boyga_Official 9 ай бұрын
"room temperature iq" gotta be the smoothest insult I've seen
@NicoBille
@NicoBille 8 ай бұрын
Question that remains: roomtemperature IQ in °F or °C?
@julian913
@julian913 5 ай бұрын
​@@NicoBilleKelvin
@shinysands9193
@shinysands9193 4 ай бұрын
@@julian913room temperature iq in kelvin would be 295iq....
@permacoo3760
@permacoo3760 3 ай бұрын
@@shinysands9193 they are very smart, obviously
@U_niquey
@U_niquey 3 ай бұрын
overused insult.
@hooting-ton5215
@hooting-ton5215 9 ай бұрын
Inf0sec: "Pay us so we will blacklist your IP from our 'service'." Me: *Files an information takedown notification*
@Bajongus
@Bajongus 9 ай бұрын
bro graduated
@Harry-f6p
@Harry-f6p 9 ай бұрын
I dont think that will work, as inf0sec does’nt store any data, it just grabs it from restorecord.
@Cyber_Official
@Cyber_Official 9 ай бұрын
just like that one RUST game website that tracks users and want them to pay like 5 dollans to remove the tracker
@TheColonThree
@TheColonThree 9 ай бұрын
Nah, let's just send them a cease and desist letter.
@authgg
@authgg 9 ай бұрын
They’re just going to ignore it, these types of people never follow laws
@ThatOneMfFrFr
@ThatOneMfFrFr 9 ай бұрын
Hey everyone Just want to let you know having your ip leaked is not dangerous at all The locations are not very accurate and most of you guys have a dynamic ip address like myself which means your ip changes time to time so dont worry about it Edit: if someone somehow is ddosing your ip you can just call your isp and change your ip
@reallyneptune
@reallyneptune 9 ай бұрын
no shit sherlock..
@Rocksy7
@Rocksy7 9 ай бұрын
this is simply false you can definitely get things like home address and phone numbers just from an IP using OSINT tools i got someone's phone number just as a test and the facts are changing your ip doesn't change the fact ur phone number is now floating around the internet brother you have to start using logic and brains how the fuck you think people get doxxed and swatted? Not from the person typing out their home address surely enough lmao
@cscscscss
@cscscscss 9 ай бұрын
someone got access to my home's cctv and posted some passwords and emails from it, and took down my router multiple times yeahhh sure buddy
@aYTcommenter
@aYTcommenter 9 ай бұрын
​@@cscscscssthats insane
@Ransomwave
@Ransomwave 9 ай бұрын
@css that is because your home's cctv password was not secure enough. they probably just bruteforced their way in because you guys didn't change the default password!
@Anatloe
@Anatloe 9 ай бұрын
damn that sage guy is literally a double agent lmfao
@abc-qj7ve
@abc-qj7ve 9 ай бұрын
And he didn't even know
@discouragements
@discouragements 9 ай бұрын
i know him on discord hes a little kid who uses tools and tries his best being dangerous lololol
@currentlycam
@currentlycam 9 ай бұрын
you dont know him u clown, theres no way this nigga just said that, would be unfortunate if you got EDR'd@@discouragements
@satie7
@satie7 9 ай бұрын
gotta give it to lil bro tho, he gave this video lots of content
@RandomFlyInTheInternet
@RandomFlyInTheInternet 9 ай бұрын
Bro played both sides and still Lost☠️
@resied4620
@resied4620 7 ай бұрын
sorry discord gangsters but i already know where i live.
@accountname7738
@accountname7738 9 ай бұрын
Nice video! However, the reason why they were pinging the person was not as a DOS attack, it was so that the people watching the video can see when the target goes offline.
@TabouletShorts
@TabouletShorts 9 ай бұрын
Sage : "Don't make a video about it" Ntts : "Nuh uh"
@icevaIk
@icevaIk 9 ай бұрын
Nutts! 😂
@wxyvrnthe1
@wxyvrnthe1 9 ай бұрын
fr and nice pfp
@Lezm
@Lezm 9 ай бұрын
Based
@kipchickensout
@kipchickensout 9 ай бұрын
@@wxyvrnthe1 I agree
@TabouletShorts
@TabouletShorts 9 ай бұрын
@@wxyvrnthe1 Yeahh
@gmanoffury
@gmanoffury 9 ай бұрын
"I have ur ip" Me with a dynamic IP: *Router goes off then back on*
@mycelia_ow
@mycelia_ow 9 ай бұрын
Prob wouldn't be too hard guessing your new IP, since only a part of it changes from doing that. A simple range search and you're back in their grasp. People rely too much on dynamic IPs 😭
@MetheusBatanir
@MetheusBatanir 9 ай бұрын
Thats sounds useful. Any help or advice how to make my UP adress more dynamic?
@uhhno841
@uhhno841 9 ай бұрын
me with 3 Ip's thru a alternative method, "what one?"
@gmanoffury
@gmanoffury 9 ай бұрын
@@MetheusBatanir your ISP provides it, you just have to ask them, you can set up a dynamic DNS through windows tho
@Ozzianman
@Ozzianman 9 ай бұрын
​@@mycelia_ow Meh, I can do resets all day. Or hell, even go dark for a good while. Whoever is trying to scam me will just move on.
@phanto-64
@phanto-64 8 ай бұрын
Fun fact: your IP adress AT BEST just gives them the location of the nearest data center and not where you live, getting your IP leaked isnt the end of the world
@authgg
@authgg 8 ай бұрын
not always. If you're in the US, your name + ip can lead to your address. Because there's a lot of public information directories like whitepages here
@trxsyn
@trxsyn 10 күн бұрын
the point of this was to ddos them
@Insignia_
@Insignia_ 6 ай бұрын
Man I couldn't care less about what 15 year olds do on Discord, but this almost documentary-like presentation is really catchy. You make it worth watching, great job.
@fusedqyou
@fusedqyou 9 ай бұрын
If Zebratic did all this then it is perfectly possible they have a backup of the database lying around. Xenos is a total moron and nobody should use these services anymore.
@erikkonstas
@erikkonstas 9 ай бұрын
Because there was ever a legitimate reason to use such a service 😂 If you're a server owner and want your members to automatically join a new server in case the old one goes for some reason, just self-host something... which does not even have to be online most of the time, only while you're doing the switch.
@trinex64
@trinex64 9 ай бұрын
nobody should be trusting them in the first place lmfao, rep is already ass as it is
@NFSHeld
@NFSHeld 9 ай бұрын
If you mean Zeb was using the backup then how would the PW change to the original DB stop the breach?
@erikkonstas
@erikkonstas 9 ай бұрын
@@NFSHeld Remember that these people are not exactly the most logical beings on Earth...
@mow_cat
@mow_cat 8 ай бұрын
@@NFSHeld 1. zeb could have found out people were looking into it (maybe xenus told them) and disabled the service temporarily 2. zeb could have really lost access to the database, disabling the service, while still having a backup of the database somewhere zeb would have to be pretty dumb not have made a backup at any point im ngl
@ccost
@ccost 9 ай бұрын
this leak has a more diverse and entertaining plotline than most movies
@authgg
@authgg 9 ай бұрын
fr I'm glad I'm using vaultcord and dodged this bullet lol
@burkino7046
@burkino7046 9 ай бұрын
Wait, it happened AGAIN?? I have a message from 12/22/2023 that talks about IPs being leaked. My friend said that "apparently it's from restorecord" Now 2 months later the same thing is being brought up
@public13684
@public13684 9 ай бұрын
ntts did not want to make a video when inf0sec first came out in december verm got early access :P
@Arctic-axe
@Arctic-axe 9 ай бұрын
Bro I knew restore cord is sus I never trust that stupid thing it's so bad and easy to exploit
@authgg
@authgg 9 ай бұрын
yeah vaultcord exposed them last year it was just never admitted before now
@Akab
@Akab 9 ай бұрын
10:35 funfact: every website on this planet logs your ip address, don't need any feature for that. A webserver needs your ip to serve you information 👍
@kai-o-kai
@kai-o-kai 9 ай бұрын
Maybe the server logs it, but you do need a feature to actually record it somewhere.
@Tom-fy8lw
@Tom-fy8lw 9 ай бұрын
Very often websites doesn't log the IP (that can get very expensive in the EU), but only saves it temporarily
@Vsnozu.
@Vsnozu. 9 ай бұрын
Bro put my ip in the thumbnail
@MODSLabs-j2u
@MODSLabs-j2u 6 ай бұрын
uh
@desmeon
@desmeon 6 ай бұрын
Check your windows tonight lil bro 😼
@Nyxar-2077
@Nyxar-2077 6 ай бұрын
Oil up, I'll be there in 5
@PurpleMonkVR4
@PurpleMonkVR4 6 ай бұрын
@@Nyxar-2077same
@ciclo6919
@ciclo6919 6 ай бұрын
Ty
@zekrodev
@zekrodev 9 ай бұрын
I honestly think restorecord should be banned for this. I verified my own discord bot a while ago and I needed to disclose every bit where user sensitive information is stored for what purpose and for how long it is stored. I believe that is for GDPR reasons, but therefore, because RestoreCord can be accessed in the EU as well, this should result in a ban. Whyever would someone log IP addresses in a database together with user IDs. There is literally no way this is necessary ,especially not for reasons they mentioned (like the VPN blocking).
@applmango
@applmango 9 ай бұрын
I think the website would only get banned in the EU
@erikkonstas
@erikkonstas 9 ай бұрын
"Whyever would someone log IP addresses in a database together with user IDs." The only reason would be to answer the question "WHO was it whose alt tried to join my server?", but... that's not its job here...
@Lezm
@Lezm 9 ай бұрын
Fr
@joecooldoo
@joecooldoo 9 ай бұрын
Developers log your IP address and associate it with an account so if they see you are doing something malicious they can blacklist your entire network.
@zekrodev
@zekrodev 9 ай бұрын
@@joecooldoo This makes no sense, because most ISPs rotate residential IP addresses on a regular basis. That’s why long term IP banning is effectively useless unless you have a static IP, which is very expensive in most cases.
@Maximus27064
@Maximus27064 9 ай бұрын
I hope Discord take notice of this instead of being a headless chicken
@VeiTheOne
@VeiTheOne 9 ай бұрын
Bet you they won't. It'll probably hurt their revenue, and we all know these big fat CEOs care about money, not people.
@fatsausage-animaatioita4717
@fatsausage-animaatioita4717 9 ай бұрын
discord did nothing wrong here?
@erikkonstas
@erikkonstas 9 ай бұрын
@@fatsausage-animaatioita4717 They still have the "Join servers for you" thing...
@numnut1516
@numnut1516 9 ай бұрын
Lmao
@n00bxl71
@n00bxl71 9 ай бұрын
Discord had literally nothing to do with this. Did you even watch the video. Even if they do take notice, there is nothing that discord is able to do, again, because it's not their issue.
@TanyaTulip
@TanyaTulip 9 ай бұрын
Shouldn't ever "verify" using links, ever. So many large trusted servers have remote verification when users join them, and it normalizes this concept of verifying externally, which opens you to the epic DDOS threads CordKiller was doing (plus IP leak and shit). It frustrates me, we don't want people to fall for this stuff, and yet we make it super easy by turning it into the norm. Like, wow, what a surprise, clicking an external link may bite you in the back! "well how was I supposed to know r/deltarune requires similar verifiation so i didn't expect any problems!"
@erikkonstas
@erikkonstas 9 ай бұрын
See, the thing is that there are valid uses for this... the mistake is when things get leaked...
@heroslippy6666
@heroslippy6666 8 ай бұрын
I've seen some of these "verify" tools that requires full access to your account to scan it. ngl this stuff is sus from all directions. I do like the ones that require users to verify inside of minecraft. Pretty cool.
@chistinelane
@chistinelane 26 күн бұрын
​@erikkonstas there really aren't and people should boycott groups that use them
@inqmusician2
@inqmusician2 9 ай бұрын
I checked the 192.44 IP and it's the P&G IP. And finding the exact person using the IP is very difficult if you're not an ISP. Because there can be hundreds in your neighbourhood using the same IP as you. Location is more reliable than IP lookup.
@TheMAZZTer
@TheMAZZTer 9 ай бұрын
Without looking at the context it's hard to say, but the ping thing could just be a way to check if a target has gone down or not (and if not how badly they're lagging).
@shawn3561
@shawn3561 3 ай бұрын
it looked like the IP actually was DDoSed considering that it was pinging then the request timed out
@yammerttv
@yammerttv 9 ай бұрын
There is actually a way to terminate someone's account. It has to do with Discords API guidelines. If you somehow get a hold of someone's Discord token (what you use to communicate with Discord's API); You can essentially just self-bot using their token and get their account terminated. It is quite literally that easy to do so, the hardest part is getting someone's token.
@GetZootedSkid
@GetZootedSkid 9 ай бұрын
I remember my account being termed for self botting because a program I had auto-joined their discord every time it launched and there was no way for me to turn it off at the time. No chance for appeal. Very cool.
@FellowCanadian01
@FellowCanadian01 9 ай бұрын
Actually@@GetZootedSkid if you go to settings and authorizes apps and try to find the one you did and deactivate it
@gan1
@gan1 9 ай бұрын
@@FellowCanadian01 he meant an external program joining it, not a bot app
@yammerttv
@yammerttv 9 ай бұрын
@@GetZootedSkid Very simple fix. Change your password. The way that Discord tokens work is a hash of your username, password, the date you joined, and a random salt value. If you change your password your token (hash) will be changed to a whole new value and thus their system won't work on you.
@GetZootedSkid
@GetZootedSkid 9 ай бұрын
@@yammerttv buddy, it was an external program, it was technically a self bot, it was an exe file, not a discord app, not a website, not a token grabber, it was a program file on my desktop that when ran, launched, would also join their discord server. There was quite literally no way of turning it off, and the account is gone. Anyone tryna give me a fix absolutely did not get what I said.
@boxmantherandom
@boxmantherandom 9 ай бұрын
sage being a snitch literally helped lol
@halfsine
@halfsine 9 ай бұрын
sage was the anti-hero of the story
@dylanharding5720
@dylanharding5720 9 ай бұрын
Every single website you visit needs to know your IP - consider a web request as sending a letter. If you don't include a return address, the server has no idea where to send the response to. Your IP being leaked is nothing to worry about, and if you are worried, just restart your router. IP based geolocation is inaccurate, most people have dynamic IPs, DoSing is not a major concern for anyone, and more and more people are ending up behind CGNAT (tldr shared IPs) anyway.
@erikkonstas
@erikkonstas 9 ай бұрын
Er... try visiting your public IP address, it will most likely lead you to your router's login page (DO NOT LOGIN FROM THERE).
@collared
@collared 9 ай бұрын
false. entering ur public ip WILL NOT bring up your routers login, unless ur ISP doesnt know what theyre doing lol@@erikkonstas
@lunlunnnnn
@lunlunnnnn 9 ай бұрын
​@@erikkonstasif your public IP leads to your router's login page, it's misconfigured and you should change its firewall to block this. also, even if you left it publicly accessible, it'd only be a problem if you kept the default password which you should never do for obvious reasons
@undefinedchannel9916
@undefinedchannel9916 9 ай бұрын
@@erikkonstasI think you misunderstand. Try accessing that IP outside of your network (on your phone with mobile data). It will only be accessible when you are connected to your network.
@tomtomi93
@tomtomi93 9 ай бұрын
​@@erikkonstas as people Said, you should reconfig your router If you can Access it from outside networks
@Gooberter
@Gooberter 3 ай бұрын
$age is literally the winner in this situation, he was the double agent, snitching everyone out and not only getting out unscathed but also walking away with 100 dollars
@luvxharuka
@luvxharuka 7 ай бұрын
5:18 "Tampons! I use that as well." WHAT.
@nino123wtf7
@nino123wtf7 Ай бұрын
its femboy
@unotheguy6
@unotheguy6 9 ай бұрын
I was confused this had 155k views but i saw this was uploaded 6h ago. This deserves 1M+ views
@_VULTAR_
@_VULTAR_ 9 ай бұрын
This guy is seriously like a superhero for discord
@YesSpeechFromText
@YesSpeechFromText 9 ай бұрын
its spiderman guys!!!!
@_VULTAR_
@_VULTAR_ 9 ай бұрын
@@YesSpeechFromText what
@mycelia_ow
@mycelia_ow 9 ай бұрын
@@YesSpeechFromText It's YSFT guys!!!!
@D9fjg
@D9fjg 9 ай бұрын
​@@YesSpeechFromText Where's MaybeSpeechForText
@notrhythm
@notrhythm 9 ай бұрын
is there another channel like this, that talks about new scams, leaks, or exploits but not just limited to discord?
@redo1122
@redo1122 9 ай бұрын
Firefox has container tabs, which is like a per tab profile. Also there is a program called ferdium, that just lets you login into tons of stuff, including multiple discord accounts. Chrome profiles sound pretty tedious.
@ThatMattWhite
@ThatMattWhite 9 ай бұрын
Not really tedious, especially since you're not limited to one tab.
@redo1122
@redo1122 9 ай бұрын
@@ThatMattWhite can you open multiple tabs in multiple profiles?
@mcfixer9503
@mcfixer9503 9 ай бұрын
@@redo1122in chrome? yes, each profile is a different window. I have 3 windows open with about 2-5 tabs each, for different emails and websites and such
@josjos2203
@josjos2203 9 ай бұрын
@@redo1122 Chrome is better cause he also needs an email for every alt so it's more manageable and more separate that way
@jaden8923
@jaden8923 9 ай бұрын
​@@ThatMattWhite?
@Nyxar-2077
@Nyxar-2077 9 ай бұрын
16:13 bro cooked too much 🔥💀
@БогданРука
@БогданРука 9 ай бұрын
11:43 an anime PFP and a Hellenistic statue PFP. Perfect duo😂
@EliseyzScripts
@EliseyzScripts 9 ай бұрын
Thanks for clearing many peoples paranoia about gettin their ip's stolen out of blue! You're the best
@kxlmn1
@kxlmn1 9 ай бұрын
Daily dose of ntts helping me learn more about discord than the actual scammers on yt ❤
@teleportor
@teleportor 9 ай бұрын
2:06 is crazy
@obiotwastaken
@obiotwastaken 9 ай бұрын
fr 😭
@haaxxx9
@haaxxx9 9 ай бұрын
That's hot!
@Ниггерфиш
@Ниггерфиш 9 ай бұрын
​@@haaxxx9Fr i couldn't even edge to that, I exploded immediately
@Lezm
@Lezm 9 ай бұрын
@@haaxxx9😩
@mycelia_ow
@mycelia_ow 9 ай бұрын
@@Ниггерфиш bro?
@marionascimento450
@marionascimento450 8 ай бұрын
Haven't finished the video yet (7:55) but this is something I (we) have been doing in multiple servers for many years now (at least 3), discord bots disguised as verification bots, among other things, which get not just your IP but the user-agent, your email and connected servers, etc. depending on the scopes, as you verify or log in or authorize it all goes into a database. This in dozens of servers with dozens of thousands of people. EDIT: After watching a bit more, it is confirmed, but this is by no means the only bot stealing data, there are hundreds. Also: Zebratic doesn't need access to the database. Xenos said he had access to the servers, if that's true, he can get the IP/User-Agent, etc. anyway and send it to another database he controls, in addition to Restorecord's, without ever having access to their db. On the other hand, he also said only the servers have access to the DB and Zebraic only had access to the servers so it's also possible depending on the exact permissions he has that he can see the whole credential to connect to the DB. In any case, it wouldn't be necessary and not even desirable, you want to be more stealthy than that and if you're not managing the db you don't want logs accessing all the records. EDIT 2: It seems this was really RC db or he was in on it somehow. It was done in a very poor way, hence why it was discovered so easily. Anyway, it's a good thing for everyone's privacy, good job you and bad job RC!
@gambl3rtv26
@gambl3rtv26 8 ай бұрын
At 2:50 he's showing that he's pinging the victim's IP successfully, and then when he sends the attack, the IP fails to respond because the victim's internet goes down
@illumi1749
@illumi1749 9 ай бұрын
why was that whole "sage" ark so much more interesting than all your other videos combined
@w3w3w3
@w3w3w3 8 ай бұрын
$age was funny af hahaha
@Heroas_Hamseros
@Heroas_Hamseros 9 ай бұрын
5:53 GmbH is meant for a German company. GmbH stands for "Gesellschaft mit beschränkter Haftung" translated as "Limited liability company"
@MsHojat
@MsHojat 9 ай бұрын
GmbH = Ltd.
@Heroas_Hamseros
@Heroas_Hamseros 8 ай бұрын
@@MsHojatLike that.
@Dann.y
@Dann.y 9 ай бұрын
"because theres no way to magically terminate someone on discord" says the person that magically terminated that scammer's account a few weeks ago.
@dr1nkndr1ve
@dr1nkndr1ve 9 ай бұрын
these things get patched quickly, or he knows a discord admin personally
@simonnt
@simonnt 9 ай бұрын
He had access to that guy's bot, it may have something to do with that
@WAZZZAAAP1
@WAZZZAAAP1 9 ай бұрын
lmao
@erikkonstas
@erikkonstas 9 ай бұрын
Uh that happened because the scammer was stupid enough to leak his bot token...
@fmoney
@fmoney 9 ай бұрын
I did not know that you suffer from incontinence No Text To Speech 5:06, very brave of you to make that joke.
@yusufkhahin119
@yusufkhahin119 9 ай бұрын
They're obviously not trying to DDoS using command prompt, it's a way of pinging an ip to see responses.
@suuper_sam
@suuper_sam 9 ай бұрын
this is def one of the most craziest things you discovered. everything had so much plot twist
@captheobbyist6434
@captheobbyist6434 9 ай бұрын
a lot of people are worrying about their ip getting leaked but it's not that bad at all. first of all your ip can only show approximate location second of all ip change from time to time when for example router reloads so they are dynamic and third of all, your ip is being sent EVERY time you access ANYTHING on internet. even just turning on your computer or mobile, you send thousands of requests to various domains.
@erikkonstas
@erikkonstas 9 ай бұрын
This "Your IP is sent every time you connect" argument is nonsense, yes it's true but that's not why we worry about IP leaks at all. The problem is when your IP ends up *in the wrong hands!* And, if you happen to be actively running the thing that leaks your IP, you'd end up doing reboot after reboot to your router, because it will be getting leaked every time... and no, your location is not what they want, your DoS-ability is what they want.
@collared
@collared 9 ай бұрын
its not even approximate but very innacurate. the location ip lookup gives me is about 300km away from my actual location lol
@lunlunnnnn
@lunlunnnnn 9 ай бұрын
​@@collaredit depends, I have multiple public IPv4s at home, and with one of them you can get the town I live in, and with the others you can get an exact address if you know the right tools. but I will admit that my setup is unusual, and for most people this isn't something they should worry about, like who the hell has an entire /29 block assigned to them
@SioxerNikita
@SioxerNikita 9 ай бұрын
@@erikkonstas Getting an IP is not that hard if the person is doing anything multiplayer. Most fast paced games will use some peer-to-peer data along with a server to speed up player interaction speeds. If you play a video game, everyone there has your IP... Your IP being leaked is 99.9% not an issue, especially if someone has genuine hacking skills to leetz0rz hack you, the IP is not going to be the limiting factor... If you have a secure network without shitty unsecured smart devices, then it is very limited what someone can do with your IP... Most people also don't have a static IP, so turning off the router will give you a new one... Denial of Service is the only semi relevant thing you can really do with an IP these days on a decently secured network
@SioxerNikita
@SioxerNikita 9 ай бұрын
IP doesn't even show location. The IP geolocation is third party companies linking IPs to areas.
@AmIBlee
@AmIBlee 9 ай бұрын
The fact that he actually called the file "Snitch-7" at 17:01 is just funny and i don't know why
@lpoki8897
@lpoki8897 9 ай бұрын
It's so wild how many of these websites are made by absolute idiots. They know just enough to make systems talk to each other and pull some data. And use a website template, and if you said the words "best practises" to them they'd just drool and blink with both eyes. And in this case add some maliciousness and greed.
@LoganWasHere224
@LoganWasHere224 9 ай бұрын
If you think your useless, remember the blur in the thumbnail.
@klafbang
@klafbang 9 ай бұрын
You actually used to be able to DoS people using ping. Send a "Ping of Death" to a Windows 95 machine, and it will BSOD.
@orangejjay
@orangejjay 9 ай бұрын
The ping of death was not a ping. It was a specific packet that was sent and it was actually called "nuking." There were fun tools called WinNuke that could do this and made IRC vey fun.
@SuperBloopie
@SuperBloopie 8 ай бұрын
@@orangejjaythe good ‘ol days of IRC channels 😅
@anonyone8834
@anonyone8834 9 ай бұрын
As an indian livung under 1000s of NATs what can you possibly do with my ip?💀💀
@nanopi
@nanopi 9 ай бұрын
That's what they get for only working with IPv4.
@_BangDroid_
@_BangDroid_ 9 ай бұрын
NAT is not a firewall even if you have 1000, plenty of ways you can traverse NAT
@anonyone8834
@anonyone8834 9 ай бұрын
@@_BangDroid_ i mean not 1000 but isps here don't give a different ipv4 to every single connection, i don't even know how many nats i am behind.
@unknownuser993
@unknownuser993 8 ай бұрын
Oh man, as an SRE supporting a service in India, that hit home. That routing really causes pain .😭. Sometimes traceroutes show 20-30 even more hops. Shit gets crazy.
@anonyone8834
@anonyone8834 8 ай бұрын
@@unknownuser993 I know man, port forwarding etc here is the hardest thing
@SyntaxErr404
@SyntaxErr404 9 ай бұрын
16:31 i love this man
@fIammable
@fIammable 9 ай бұрын
How about 5:15 😂
@martim1379
@martim1379 9 ай бұрын
2:55 cmd is just to see if DDOS is working or not, ping command is not the actual ddos attack, he is probaly using free DDOS website
@chapichapo
@chapichapo 8 ай бұрын
Amazing video - this channel is turning into real investigative journalism!
@fxturist8534
@fxturist8534 9 ай бұрын
assuming restorecord is based in the US or EU, they have up to 72 hours to report a data breach before facing legal consequences
@user-uo8ny1kj4c
@user-uo8ny1kj4c 9 ай бұрын
It's probably based in India we all know how good they are with technology
@spgaming1272
@spgaming1272 9 ай бұрын
it's not a data breach, the owner just gave the creds to the idiot that runs Inf0sec
@fegoteron
@fegoteron 9 ай бұрын
@@spgaming1272 And he accessed the data, which means that data was breached, which means its a data breach...
@Ozzianman
@Ozzianman 9 ай бұрын
​@@spgaming1272So it is a data breach.
@Lezm
@Lezm 9 ай бұрын
Thanks man, it’s a relief I don’t use discord often enough to ever come across this bot, your doing gods work, appreciate you bb ❤
@Lezm
@Lezm 9 ай бұрын
@yx-su5qf yeah, I heard of it it because of this channel, if it wasn’t for him I wouldn’t have heard of it at all
@Xudmud
@Xudmud 9 ай бұрын
8:40 Lucky it was in the last 90 days, given Chrome (and Chromium-based browsers) don't retain browsing history locally longer than that.
@LetoZeth
@LetoZeth 8 ай бұрын
Your IP means nothing. The most you'll get out of my IP is that I'm located in Sweden and the name of my ISP. The IP says Stockholm, because that's where the ISP is situated. But that's not where I'm at, not even close. People get scared when they hear someone got their IP, it has always been like that with people who don't really know better. You can get more information about someone from their Username than their IP.
@iRON90111
@iRON90111 7 ай бұрын
yeah, IP Location shows the location 50 miles from ur home, what they gonna do? search every house?
@notlark650
@notlark650 5 ай бұрын
The "there is no such thing as a coincidence" clip fuckin sent me
@BeanBoi_2
@BeanBoi_2 5 ай бұрын
The payment proof 💀
@Stickuni
@Stickuni 4 ай бұрын
2:01 what. Is. This.
@CyborgLikeDucks
@CyborgLikeDucks 9 ай бұрын
3:05 alright bro
@PhantomDevelopment
@PhantomDevelopment 6 ай бұрын
As a cyber security student I can say that finding someone's IP is the same as looking at the door of a house to break in, attack is depends on how secure the door is, if the door is secure enough you have nothing, attack by only IP is same thing
@GabrielBigardi
@GabrielBigardi 8 ай бұрын
I don't think they were "DDosing using CMD", usually CMD is used just to see if the target host is down or not.
@synx7730
@synx7730 4 ай бұрын
2:08 im traumatized
@fxturist8534
@fxturist8534 9 ай бұрын
2:48 ermm actually 🤓 (nerd note) this is DOS and not DDOS (also on one of my classes we did a little funny DOS attack on my city's website to see views counter go up on one of the posts lmao)
@undefinedchannel9916
@undefinedchannel9916 9 ай бұрын
they DDoS it in the background while using ping to check if it’s still up
@CMM47
@CMM47 9 ай бұрын
13:40 Nah I think they had an under the blanket exchange 💀
@synexiasaturnds727yearsago7
@synexiasaturnds727yearsago7 2 ай бұрын
Mouth-to-mouth exchange
@Idknlandwh123
@Idknlandwh123 Ай бұрын
3:06
@cinderwolf32
@cinderwolf32 8 ай бұрын
5:10 is the most chaotic sequence of deadpan narration I think I have ever heard in so little time
@notghostvista
@notghostvista 8 ай бұрын
this guy does a greater job on giving others tips on how to be careful more than Discord themselves
@Tetroner
@Tetroner 9 ай бұрын
I think NTTS lied in 5:58 he doesn't have any friends 😔
@jakeblum907
@jakeblum907 9 ай бұрын
7:29 WOMP WOMP
@dxvzera
@dxvzera 9 ай бұрын
4:04 bro doxxed me 💀
@multibrandan
@multibrandan 3 ай бұрын
I don’t know what it is but you are cracking me up! The way you go about your videos I just hilarious I mean by far what made me laugh aside for the many scenarios you have in this video was the “and oh my goodness” lol 😆
@TheUnknownCatWarrior
@TheUnknownCatWarrior 9 ай бұрын
So basically, when you visit a website, the server has your IP address logged which is inevitable.
@JonnygamingTv
@JonnygamingTv 9 ай бұрын
1:55 DDoS services work pretty similar 💀
@prohax1
@prohax1 Ай бұрын
!??
@TabbedOutLOL
@TabbedOutLOL 8 ай бұрын
3:45 they fr be making mee6 look like a good deal
@Ten3br0us
@Ten3br0us 9 ай бұрын
2:08 buddy
@MicahBernat_2
@MicahBernat_2 5 ай бұрын
ayo
@itstheV01D
@itstheV01D 6 ай бұрын
17:04 i love how you named the file on your computer "snitch"
@MightyDantheman
@MightyDantheman 9 ай бұрын
Why exactly would Discord bots ever need a user's IP? Why does Discord allow this?
@lillywho
@lillywho 9 ай бұрын
The thing is: Sure, get my IP. So what? All you're going to get might be a portscan and discover my TF2 fastdl server...
@blucheavy3282
@blucheavy3282 9 ай бұрын
yeah, ip’s just show the largest city near you LOL
@erikkonstas
@erikkonstas 9 ай бұрын
Umm, if you have any IoT devices (like "smart" fridge, "smart" baby monitor, etc.), those are reported to... not have some very essential security features like a firewall, and... eh... the perp now has access to your LAN...
@Milbyte11
@Milbyte11 9 ай бұрын
@@erikkonstas but there's no gateway from public IP into LAN unless you have ports forwarded, and why would any of those "smart" devices need any forwarded ports????
@lillywho
@lillywho 9 ай бұрын
@@erikkonstas Except IoT devices have got the benefit of being behind a LAN AND ideally don't have any port forwarding. And personally, I've got exactly one smart light bulb that isn't even allowed to talk to any public address at all.
@luxploit
@luxploit 9 ай бұрын
4:48 i know this guy from another discord, he really has the IQ of an antarctic thermostat
@artbrox
@artbrox 5 ай бұрын
15:09 this fits perfectly
@raynfall77_69
@raynfall77_69 9 ай бұрын
Correct me if I’m wrong, but the ips that start with the 192 are private, not public. So those two clowns were sending completely useless information trying to scare ntts.
@_BangDroid_
@_BangDroid_ 9 ай бұрын
There are public ones that start with 192. Such as the one in the video 192,44 is public. In IPv4 the only private IP's are in the ranges of 10,0,0,0/8 and 172,16,0,0/12 and 192,168,0,0/16
@raynfall77_69
@raynfall77_69 9 ай бұрын
@@_BangDroid_ Ah, thanks for clarification.
@abgmurrell4074
@abgmurrell4074 8 ай бұрын
16:30 "42 megaton missle - my obese ass, pointed directly at him" God damn that made me laugh harder than it should've.
@doogy_wants_doogcakes
@doogy_wants_doogcakes 7 ай бұрын
imagine that ip from ohio is watching this video
@nyanolive
@nyanolive 9 ай бұрын
3:20 who the heck is Dura and why are we attacking them? ;w;
@GGGamesXDlol
@GGGamesXDlol 9 ай бұрын
1:09 ntts is gaslighting us
@sushi.2v
@sushi.2v 5 ай бұрын
i dont get it why ppl are so scared of getting their ip leaked, like just reset your ip if that happens
@spectronimo7964
@spectronimo7964 4 ай бұрын
the "his tone changed because i was now looking at him" went so hard i had to throw it on rewind and watch it back
@firesoul2759
@firesoul2759 8 ай бұрын
6:20 OOH MA GAWD 🤣 that got me good
@KaijuSheeley
@KaijuSheeley 7 ай бұрын
8:09 How did you do this i wana do it too
@antimateriaali
@antimateriaali 4 ай бұрын
2:08 EYO WTF DID I SEE
@altaccount648
@altaccount648 9 ай бұрын
It's pretty obvious that 100% of these are gotten from the bots that autojoin for you when servers get suspended, since they get redirect to a website for auth.
@altaccount648
@altaccount648 9 ай бұрын
That's exactly what it was, saved y'all 18 minutes of wasted time.
@BlayzMain
@BlayzMain 3 ай бұрын
The only Entertaining, Informal youtuber i know and love
Investigating the Discord Scam that Targets your Friends!
15:19
No Text To Speech
Рет қаралды 925 М.
Exposing the Website that Stalks You in Discord!
20:47
No Text To Speech
Рет қаралды 1,1 МЛН
Муж внезапно вернулся домой @Oscar_elteacher
00:43
История одного вокалиста
Рет қаралды 6 МЛН
Long Nails 💅🏻 #shorts
00:50
Mr DegrEE
Рет қаралды 14 МЛН
Hacking into a Discord User's Crypto Account!
11:56
No Text To Speech
Рет қаралды 2,1 МЛН
The Most Pathetic Roblox Scammers Ever
24:13
No Text To Speech
Рет қаралды 4,1 МЛН
Mee6's $3,000,000 Discord NFT Scam!
23:34
No Text To Speech
Рет қаралды 887 М.
I built the DREAM Smart Living Room!
20:28
Mrwhosetheboss
Рет қаралды 943 М.
Exposing Discord's Degenerate Gambling Predictors...
23:44
No Text To Speech
Рет қаралды 628 М.
The Discord Server that Scams Amazon!
12:02
No Text To Speech
Рет қаралды 1,2 МЛН
Mr. Beast's Response
2:37:55
oompaville
Рет қаралды 1,6 МЛН