Telegram Has Been Hacked
Рет қаралды 204,651
Ай бұрынLearn Cybersecurity - Name Your Price Training with John Hammond: nameyourpricetraining.com
📧JOIN MY NEWSLETTER ➡ jh.live/email
🙏SUPPORT THE CHANNEL ➡ jh.live/patreon
🤝 SPONSOR THE CHANNEL ➡ jh.live/sponsor
🌎FOLLOW ME EVERYWHERE ➡ jh.live/twitter ↔ jh.live/linkedin ↔ jh.live/discord ↔ jh.live/instagram ↔ jh.live/tiktok
💥 SEND ME MALWARE ➡ jh.live/malware
🔥KZbin ALGORITHM ➡ Like, Comment, & Subscribe!
@BhilBhil-tc8fy 25 күн бұрын
Yes please. I would love a video that does a deep dive on the *Metaspyclub* project
@ranjanekka85 25 күн бұрын
Metaspyclub gang in the house! Thanks for the analysis!
@milanjamod7469 25 күн бұрын
Metaspyclub anticipation is building to a fever pitch! 😥
@KvapuJanjalia Ай бұрын
I'm not afraid of a calculator! Bring it on!
@cringemaki Ай бұрын
Everybody gangsta till the calculator app starts to ask permissions for camera, microphone and location 💀
@yukiplaysFr Ай бұрын
💀
@TobbeOakleaf Ай бұрын
Oh it will be problems! Count on it!
@BillAnt Ай бұрын
At 8:14 that evil laughter Muaahhh!! lol
@Raymi20- Ай бұрын
@@yukiplaysFr**salutes to the therian** Ma'am how can I help you ma'am
@Spiderfffun Ай бұрын
RCE after RCE, I hope kids wont have to learn about the year of the vulnerabilities, 2024, in the future
@SLZeroArrow Ай бұрын
Thy Digital Apocalypse is drawing nearer by the day
@atomgutan8064 Ай бұрын
This is literally cybersecurity history.
@TehPwnerer Ай бұрын
No it will be certainly eclipsed by the number of them in 2025
@Ph34rNoB33r Ай бұрын
I wonder whether the whole AI hype will make even more RCEs show up. Either by improving exploit code or by reducing code quality in the attacked app because people trust AI code without questioning it.
@Shaggidelic69 Ай бұрын
@@SLZeroArrow seriously. I dedicated my whole life to computers and now they looking like they wanna kill us (ai). Ai is phuggin everything up. Its kinda scary tbh
@DoorThief Ай бұрын
I just got a SNYK sponsored ad by John Hammond before his own video
@NileGold Ай бұрын
Fr
@h5e Ай бұрын
I did too
@alek002 Ай бұрын
It's rigged!1!1!1!1!1
@thecrew8612 Ай бұрын
Saaame
@why1851 Ай бұрын
too much rce exploits bro 💀💀💀💀💀💀💀
@sunbleachedangel Ай бұрын
What are others?
@amaankhan8436 Ай бұрын
Xz utils, rust, palo alto
@sunbleachedangel Ай бұрын
@@amaankhan8436 Palo alto?? My company uses that lul
@why1851 Ай бұрын
@@sunbleachedangel there was a rust rce CVE-2024-24576, aint that effective though
@yureimenkishi4291 Ай бұрын
Rust already released a patch its java that said they ain't fixing it. Tbf .bat codes running aren't used anywhere so who really cares
@ghoulbuster1 Ай бұрын
TL;DR The exploit disguises as a fake video that when played executes python code, requires python to be installed for it to work.
@mushroommanny Ай бұрын
saved me about 10 mins bro ty
@lucplayed 21 күн бұрын
Me, an it student, got "hacked" like that...🤣
@AstralArchivists Ай бұрын
Bet the three later agencies are punching air rn. All their exploits getting found.
@BillAnt Ай бұрын
While reading your comment. lol
@MrCobalt Ай бұрын
You think every exploit exists because of "three later agencies"? 😂
@ohmsohmsohms Ай бұрын
@@MrCobaltgiven the past of their involvement with 0days, I wouldn’t be surprised if they were aware of maybe 1 of the RCE vulnerabilities discovered this year
@v-y Ай бұрын
@@MrCobalt theres no way this was an unintended oversight
@januzi2 Ай бұрын
Wait ... we can hack those spammers that are sending us the messages to text them?
@osiristeam6959 Ай бұрын
They should have a list of trusted extensions instead of a list of untrusted ones.
@zeteya Ай бұрын
Very bad idea
@rafayahmed6259 Ай бұрын
@@zeteyawhy?
@zeteya Ай бұрын
@@rafayahmed6259 Many reasons, one being a good extension can turn bad one day, but an extension that was bad to begin with will never turn good.
@ThisIsJustADrillBit Ай бұрын
The fuzzing begins ❤
@BillAnt Ай бұрын
LPL has entered the chat, fuzzing locks are fun. hehe
@AuxiliaryPanther Ай бұрын
@@BillAnt...we're getting an SQL injection on three, oh it's binding. A little malware on four, and we're set. Going back to three, gained root access to run our query, annd now we're in.
@BillAnt Ай бұрын
@@AuxiliaryPanther lol that took like 30 seconds.... not a very secure lock. :D
@cvl14 Ай бұрын
This just shows how blacklist are ineffective as a security tool
@kbabe3915 Ай бұрын
The scrum meeting: "Yeah, an approve list is too short, let's write out every single extension that could execute code instead of just choosing some image and video formats that we support."
@user-hp2dr5qc8p Ай бұрын
A whitelist can get annoying tbh.
@kbabe3915 Ай бұрын
@@user-hp2dr5qc8p Ah yeah, you're right, much more annoying than a 0 day. Also a blacklist had to have been annoying from the very start.
@milanvucetic1292 Ай бұрын
3:55 Not me watching the John Hammond video and getting an ad with John Hammond in it. Some may say it's a 2 for 1.
@BillAnt Ай бұрын
Taking it up the a** without lube. lol
@acessor9899 Ай бұрын
This one RCE was indeed fun to use, gotta find more ;)
@1hw3 Ай бұрын
hello vro
@Luzum Ай бұрын
im gonna touch u vro ♥
@jabrowski_ Ай бұрын
Interesting shiz John. Liked and subbed, stay safe
@te-weikaigai1836 Ай бұрын
I'm glad that I migrated to Debian + KDE two months ago. I still have my Windows on my drive, but never want to boot it anymore. The KDE environment in Linux is just much better than Windows.
@HyBlock Ай бұрын
who asked?
@KLR-3 Ай бұрын
Welcome to the family.🐧
@te-weikaigai1836 Ай бұрын
@@HyBlock the implication was that I'm not affected by windows RCE anymore.
@freerice9595 Ай бұрын
I've tried making Ubuntu and Linux mint my daily driver many times. Can't do it. But for home labbing and running servers it's perfect.
@shiiy5131 Ай бұрын
it's just so much more superior, once you try it you never go back lol
@vladislavkaras491 Ай бұрын
Thanks for the news!
@cyber_space09 Ай бұрын
Wow good job I want more info ❤
@yessintaktak9200 Ай бұрын
Hello john . I am a big fan of your content can you make a roadmaps for us form when need to start 😅❤
@actng Ай бұрын
Thanks John you explained that very well
@SchooiYT Ай бұрын
Nice Video!
@ToniMorton Ай бұрын
calculator opens in my nightmares.
@wiertgo Ай бұрын
I got an ad from you on this video
@anthonymcevans8191 Ай бұрын
“It is not by default installed” **laughs in Linux**
@abandoninplace2751 Ай бұрын
They are identifying files by extension. Nice.
@user-fp7fs9xl2t Ай бұрын
Great Content ...
@TheMAZZTer Ай бұрын
Oof, this is why blacklists can be problematic, with a whitelist they would not have had this problem.
@BaggerPRO Ай бұрын
Except perhaps for the problem of naming this list as "white" 😁
@joshallen128 Ай бұрын
@@BaggerPROblock allow lists?
@BaggerPRO Ай бұрын
@@joshallen128 , Yeah, it looks like it's fashionable to call these lists that way now :)
@BillAnt Ай бұрын
A block list is usually shorter than a white list, but it's just a matter of decision.
@joshallen128 Ай бұрын
@@BillAnt Deny list because block sounds like black with an accent
@shadflur874 Ай бұрын
How do u register for that forum?
@planktonfun1 Ай бұрын
every vulnerability whether or not its trivial, can and will be leveraged
@ShadowManceri Ай бұрын
I find it very bizarre that you can execute a file in the first place. That seems like a bad idea in many ways.
@user-hp2dr5qc8p Ай бұрын
How do you suggest to open a .txt file?
@ShadowManceri Ай бұрын
@@user-hp2dr5qc8p .txt file should be read, not executed.
@johndeaux8815 Ай бұрын
Hate the red border on the thumbnails, I assume I've already watched and scroll past half the time
@sophisticatedserpent1512 Ай бұрын
The red bars in the thumbnail made me think I already watched this video.
@ernestmugo1765 Ай бұрын
Right, I thought so too!
@sevuszeld5015 Ай бұрын
the title of the video is not that nice because i thought it would be a vulnerability that accurs right now. anyways. Thanks for sharing.
@mrhassell Ай бұрын
Requires Python to be installed in the local path as a global environment variable.
@sa1t938 16 күн бұрын
it requires the file extension to be registered to the python interpreter, not anything to do with environment variables
@PasqualItizzz Ай бұрын
Tis the season to find folly, tra la la la la, la la la lol
@Bromon655 Ай бұрын
3:28 lol. They backed themselves into a corner with that statement.
@allxrise Ай бұрын
They might have been logging something like "There is no any program to open this file-type/mime-type" perhaps? Or they just RCE'd to everyone... Who knows?
@Bromon655 Ай бұрын
@@allxrise I’m more inclined to believe they were just fabricating a number as an attempt at damage control
@runedust9875 Ай бұрын
Having a whitelist instead of a blacklist would prob. be more secure and reliable. Basic security not?
@tablettablete186 Ай бұрын
I was thinking the same
@xion637 Ай бұрын
@@tablettablete186 governed by implicit deny. Also agree.
@user-mk3zz8zn9b Ай бұрын
nah, its not think again
@rian0xFFF Ай бұрын
depends on size
@oncetwice6366 Ай бұрын
Who's idea it was to hardcode bunch of files there. They'll just keep updating it every timea new file type that can execute code comes? Sounds like horrible idea.
@higurashinerd Ай бұрын
Part of whyI never share diagnostic data with devs. It’s so nosey now
@dimike96 Ай бұрын
Surely some communities would have a very high hit rate for python being installed on a windows machine right?
@crism8868 Ай бұрын
Yup. All data science and AI nerds.
@Bromon655 Ай бұрын
Anybody even slightly interested in programming has a decent chance of having it installed on their computer. I refuse to believe less than 0.01% of users were affected.
@paulwesley3862 Ай бұрын
@@Bromon655a) is the 6th most downloaded app - is your grandma programming? b) die this you must use it on your PC. how many people just have it on their phone?
@hackcode2240 Ай бұрын
Amo tus videos
@BreadGuy0 Ай бұрын
Everybody be acting gangsta until calculator auto launches
@kipchickensout 27 күн бұрын
"Google Photos would like to make Phone calls"
@fokyewtoob8835 Ай бұрын
Music to my ears
@kuperrr6776 19 күн бұрын
Hey how can i get an xss is account? i tried and always the same when i create an account "Your account has been declined."
@commanderpaladin Ай бұрын
I like cats. Btw we can all be farmers. No tech no rce problems 😎
@mrfoodarama Ай бұрын
Oooff... thank you John... cant believe im one of those 0.01% .. slackin
@paul-olof Ай бұрын
Haha so specific but I would've been at risk
@zheil9152 Ай бұрын
1:48 macOS has it installed by default, last I checked at least
@dom1310df Ай бұрын
Does mac have a similar concept of file extension associations as on windows, so a pyzw file will open with python by default?
@chiroyce Ай бұрын
Not anymore, used to have Python 2.x
@momentum9319 Ай бұрын
what is "flair"
@guilherme5094 Ай бұрын
👍Nice.
@benherbst3620 Ай бұрын
CRAZY
@manasmahanand732 Ай бұрын
With a bit of social engineering this could have been pretty terrible
@kingoftheorient Ай бұрын
A lot of noodles will be leaked for sure.
@Javv1721 Ай бұрын
Me as python developer and windows user💀
@Mat2095 Ай бұрын
But, isn't pyzw supposed to be a zip-archive? That contains a __main__.py? I'm actually surprised this runs at all.
@reijin999 Ай бұрын
yeah but it updates every hour so it's chill
@Pem7 Ай бұрын
2024 is on fire with RCEs🤞🏾
@BU5TER288 Ай бұрын
oh no.. now i feel so dirty i cant wash it off
@DoingFedTime Ай бұрын
Bad stuff for many. One of the reasons I always tell people to NOT use this medium.
@aaronguerrero2003 Ай бұрын
There is always a way in😉
@Axodus Ай бұрын
Good, they banned my account for no reason.
@furrygem5176 Ай бұрын
"Certified rce moment" 💀
@r35p3ct00 Ай бұрын
Такое чувство, что на безопасность всем насрать, только ты можешь себя обезопасить, не кликая на всякое говно
@RebziSquad Ай бұрын
Если человек наивный, то его никакая защита не спасет) Однажды мой знакомый запустил подозрительный tampermonkey скрипт в дискорде, говорит "2FA стоит же, чего бояться?". В конечном итоге украли его токен и смогли получить доступ к аккаунту.
@EnitinEnitin 14 күн бұрын
This is why you should use whitelists instead of blacklists.
@legendarycuber9205 Ай бұрын
I got a SYNK ad with John right before the video and was confused why there was a skip button 😂
@user-mc8xt1iq7c Ай бұрын
bro, youtube just showed me your ad, on your own video. theyre wasting your ad money
@SimplyGamer605 Ай бұрын
Hey, nice video, but just one thing. Your audio and video dosent seem to be perfectly in sync and its getting on my nerves
@ZaberfangX Ай бұрын
Is it safer just makes a user that is not admin user? So if code ran its needs admin user right as default user windows always user are admin?
@lunaxquinn Ай бұрын
Linux users are way more likely to have python installed out of the box so i wouldn't call this a "very specific" exploit.
@maktiki Ай бұрын
I think the problem is Windows. It runs everything too fast without permission.
@StealthSec-BugBounty Ай бұрын
Ohh no
@rigsshiver823 Ай бұрын
tf is going on .. rce 💀
@IlIlIIlIlIlIlIlIl Ай бұрын
Good thing I run it in a vm on a vps
@Luzum Ай бұрын
vm escape + pyzw = your vps gets owned
@luizzeroxis Ай бұрын
How is this RCE? It's just running the code that someone sent to you. There's no difference between that and opening an exe.
@definitelyno Ай бұрын
You can add an extra dot at the end. Windows -> Run -> 'calc.exe.' -> Enter opens calc. Does that work to bypass.
@LibraryOFSounds Ай бұрын
Yeah uae does not like private messaging.
@rafayahmed6259 Ай бұрын
😅😅
@LibraryOFSounds Ай бұрын
@@rafayahmed6259 Do you know uae connection with then twitter ? Or the documentary about state hackers of usa training uae agents. That documentary is so interesting
@impostorsyndrome1350 Ай бұрын
I have Python installed on Windows computer... It helps with learning Python programming, idk why people are so against it.
@zombi1034 Ай бұрын
Yea, not sure why he made it seem like something extremely unusual. I think most people that do any kind of programming and use Windows will have python installed.
@Slada1 Ай бұрын
Why would you learn python if you could not use it? :D
@impostorsyndrome1350 Ай бұрын
@@Slada1 wdym not use it? You can use it to create various programs.
@robotron1236 Ай бұрын
You should watch Telegrams owners interview with Tucker Carlson. They have like 30 employees and have never spent a dime on advertising. 😂
@entertain8648 Ай бұрын
Why are you laughing though?
@couldntgivafuk Ай бұрын
I've never liked the idea of "allow" and "deny" list... just deny all and allow the user to specify.
@FRITTY12348546 Ай бұрын
But was it a typo :D
@user-fe5mz9mq5o Ай бұрын
i found this exploit 2 years ago... never posted anything about it
@rodricbr Ай бұрын
this is such an interesting rce tho... lol
@kipchickensout 27 күн бұрын
python on windows, not that unnatural
@Reelix Ай бұрын
"Windows that has python installed" you claim is extremely odd. That... Is an extremely odd statement.
@jamesciastko8861 Ай бұрын
What is happening lately? 💀💀
@Aghnanster Ай бұрын
Ive heard this is on discord also
@Luzum Ай бұрын
it is not
@adenosinetp10 Ай бұрын
can you stop using the word "stupid" so frequently and often?
@christoferrian Ай бұрын
hello world
@TheAwillz Ай бұрын
Sometimes you guys are very clever with tech but not so clever with people…
@dkizilkaya6839 Ай бұрын
This was surely done by purpose. Believe me not.
@YouTubeName-hw1uk Ай бұрын
Anf i thought wiiu wansthe only thing that has rce 😂
@oracuda Ай бұрын
how do RCEs still exist in 2024 bro 😭😭😭😭😭
@crlfff Ай бұрын
They are found in everything
@KLR-3 Ай бұрын
Why do they blacklist file types they believe are unsafe. They should be whitelisting filetypes that are safe. If some new software comes along that belongs in the unsafe catagory they have to know about the related filetype and then add it to the blacklist...
@wafinashwan8242 Ай бұрын
whitelist would take too long.
@erroroliver Ай бұрын
@@wafinashwan8242got any quote from a developer?
@johnsmith34 Ай бұрын
"Reimplemeent file open confirmations" has a noWarning list, so I think that's done now.
@KLR-3 Ай бұрын
@@wafinashwan8242how so?
@johndoublew3060 Ай бұрын
@@wafinashwan8242 how come
@BouleyMusic Ай бұрын
wonder if you could just do the same with .bat file that puts itself in the shell:startup folder upon clicking the "video"
@TheRealJohnJokes Ай бұрын
I edited my comment so no one knows what I said!
@DavidFrankland Ай бұрын
echo y | format c:
@imranapervez1886 Ай бұрын
😊