Everybody gangsta till the calculator app starts to ask permissions for camera, microphone and location 💀

💀

Oh it will be problems! Count on it!

At 8:14 that evil laughter Muaahhh!! lol

​@@yukiplaysFr**salutes to the therian** Ma'am how can I help you ma'am

saved me about 10 mins bro ty

What are others?

Xz utils, rust, palo alto

@@amaankhan8436 Palo alto?? My company uses that lul

@@sunbleachedangel there was a rust rce CVE-2024-24576, aint that effective though

​@amaankhan8436 xz is a backdoor not an rce vulnerability

Thy Digital Apocalypse is drawing nearer by the day

Defected by a typo as well.🤦 Talk about ebmassment.😒

This is literally cybersecurity history.

No it will be certainly eclipsed by the number of them in 2025

@@TehPwnerer I agree with you, I think people are going to use the idea to build a similar process.

Very bad idea

​@@zeteyawhy?

@@rafayahmed6259 Many reasons, one being a good extension can turn bad one day, but an extension that was bad to begin with will never turn good.

Fr

I did too

It's rigged!1!1!1!1!1

Saaame

A whitelist can get annoying tbh.

@@user-hp2dr5qc8p Ah yeah, you're right, much more annoying than a 0 day. Also a blacklist had to have been annoying from the very start.

While reading your comment. lol

You think every exploit exists because of "three later agencies"? 😂

@@MrCobaltgiven the past of their involvement with 0days, I wouldn’t be surprised if they were aware of maybe 1 of the RCE vulnerabilities discovered this year

​@@MrCobalt theres no way this was an unintended oversight

who asked?

Welcome to the family.🐧

@@HyBlock the implication was that I'm not affected by windows RCE anymore.

I've tried making Ubuntu and Linux mint my daily driver many times. Can't do it. But for home labbing and running servers it's perfect.

it's just so much more superior, once you try it you never go back lol

LPL has entered the chat, fuzzing locks are fun. hehe

​@@BillAnt...we're getting an SQL injection on three, oh it's binding. A little malware on four, and we're set. Going back to three, gained root access to run our query, annd now we're in.

​@@AuxiliaryPanther lol that took like 30 seconds.... not a very secure lock. :D

Taking it up the a** without lube. lol

Except perhaps for the problem of naming this list as "white" 😁

​@@BaggerPROblock allow lists?

@@joshallen128 , Yeah, it looks like it's fashionable to call these lists that way now :)

A block list is usually shorter than a white list, but it's just a matter of decision.

@@BillAnt Deny list because block sounds like black with an accent

hello vro

im gonna touch u vro ♥

I was thinking the same

@@tablettablete186 governed by implicit deny. Also agree.

nah, its not think again

depends on size

How do you suggest to open a .txt file?

@@user-hp2dr5qc8p .txt file should be read, not executed.

Yup. All data science and AI nerds.

Anybody even slightly interested in programming has a decent chance of having it installed on their computer. I refuse to believe less than 0.01% of users were affected.

​@@Bromon655a) is the 6th most downloaded app - is your grandma programming? b) die this you must use it on your PC. how many people just have it on their phone?

Если человек наивный, то его никакая защита не спасет) Однажды мой знакомый запустил подозрительный tampermonkey скрипт в дискорде, говорит "2FA стоит же, чего бояться?". В конечном итоге украли его токен и смогли получить доступ к аккаунту.

Does mac have a similar concept of file extension associations as on windows, so a pyzw file will open with python by default?

Not anymore, used to have Python 2.x

They might have been logging something like "There is no any program to open this file-type/mime-type" perhaps? Or they just RCE'd to everyone... Who knows?

@@allxrise I’m more inclined to believe they were just fabricating a number as an attempt at damage control

Right, I thought so too!

Yea, not sure why he made it seem like something extremely unusual. I think most people that do any kind of programming and use Windows will have python installed.

Why would you learn python if you could not use it? :D

@@Slada1 wdym not use it? You can use it to create various programs.

whitelist would take too long.

​@@wafinashwan8242got any quote from a developer?

"Reimplemeent file open confirmations" has a noWarning list, so I think that's done now.

​@@wafinashwan8242how so?

@@wafinashwan8242 how come

Why are you laughing though?

vm escape + pyzw = your vps gets owned

😅😅

@@rafayahmed6259 Do you know uae connection with then twitter ? Or the documentary about state hackers of usa training uae agents. That documentary is so interesting

gets attention, wasn't even searching for any exploiting related content but got this recommended

Meh, this channel isn't nearly as guilty of sensationalized clickbait as other channels. I felt the discussion in this video was pretty straightforward and no-nonsense.

Propose a title for this video.

it is not

Can you provide examples of that?

Some bots post links that have a picture that looks like a video as the thumbnail of the preview card. It's very hard to explain

@@Difluoroacetamide i mean like, i want a link

@@Sinstyson There's really no documentation for it; you just have to see it for yourself. It's a link preview that tricks you into thinking it's a playable video with a thumbnail designed to deceive. With closer inspection, it displays the site title, link, and description below the thumbnail. It's easy to be fooled by this if you're not tech-savvy or have poor vision. Mainly this is used by adult content bots to lure people to their websites. It's not a security vulnerability, but rather a case of OP being oblivious no offense

zero day means "it is not fixed yet", and not "not shared yet"

it means, not know/just known by the seveloper ​@@Z3rgatul

They are found in everything