Micah Lee has created an open source research tool called TeleMessage Explorer to analyze data from a massive hack of TeleMessage, the company behind a modified Signal app used by Trump's former national security advisor Mike Waltz.
A security researcher discovered that IPv6's massive address space combined with a botguard bypass could expose any Google user's phone number. The vulnerability allowed attackers to potentially leak phone numbers through systematic enumeration of IPv6 addresses.
A security vulnerability allowed attackers to obtain any Google user's phone number by exploiting IPv6's address space and bypassing botguard protections. The flaw exposed phone numbers through rate limit manipulation and infrastructure weaknesses.
A new phishing-as-a-service called Starkiller uses disguised links to load real login pages from target brands. It acts as a relay between victims and legitimate sites, forwarding usernames, passwords, and MFA codes to bypass security measures.
An analysis of the Android Telegram client Telega found that it routes network traffic through a Man-in-the-Middle (MitM) infrastructure located in Russia, raising serious security and privacy concerns for users.
An investigation uncovered a large network of fake support groups on Telegram that spread cryptocurrency stealers and drainers. The network was found to be actively promoting malicious tools designed to drain crypto wallets.