Featured Post

AI + Automation for Indian MSMEs

Image
  A Complete Guide to Digital Transformation Understanding AI and Automation for Small Business Growth AI and Automation: The Complete Guide to Digital Growth for Indian MSMEs Indian small and medium-sized businesses stand at an exciting turning point. Technology that once belonged only to big companies is now open to everyone. Artificial intelligence and automation help your business grow, work better, and beat the competition. India’s digital shift makes it easy for small businesses to scale without extra cost. Business operations in India change fast. Smart tools replace old methods. These tools save time, reduce mistakes, and increase earnings. Government programs like Digital India create strong support for MSMEs. Businesses that use these tools gain a clear advantage. Postbox Live, a creative advertising and marketing agency in Navi Mumbai, builds digital marketing plans for MSMEs. Our team understands the challenges that MSMEs face. We create strategies that attract custom...
Post a Comment

Telegram addresses a flaw that let hackers transfer harmful files over chat rooms.

 Telegram addresses a flaw that lets hackers transfer harmful files over chat rooms.



 

Telegram addresses a flaw that lets hackers transfer harmful files over chat rooms.






24/7/2024,


Recently, Telegram fixed a serious flaw in its Android app.

 

Because of the vulnerability, malicious files might be sent via the platform purporting to be video files.

 

The threat actor responsible for this exploit is yet unknown.

Recently, Telegram fixed a serious flaw in its Android app that let hackers use the service to distribute malicious files purportedly in the form of videos. The zero-day exploit known as "EvilVideo" was discovered by ESET researchers and was first offered for sale on a covert forum on June 6, 2024. 

The exploit took use of a weakness that allowed attackers to disseminate malicious payloads over chats, groups, and channels on Telegram while disguising them as safe multimedia files.

 

The exploit was found and examined by the ESET team, who then reported it to Telegram on June 26. The vulnerability in Telegram versions 10.14.5 and higher was then patched by an upgrade that was made available by Telegram on July 11.

Now that the problem has been fixed, users are safe from the danger.

How the Trick Operated

 

Versions 10.14.4 and earlier of Telegram were the focus of the EvilVideo vulnerability. It functioned by generating a malicious payload that showed up in chat as a 30-second video file. 


Telegram would require users to install an external player which was actually a malicious program under a different name when they tried to play this file. Users could manually download the payload by hitting the download button, or it would download automatically if their settings allowed media files to download automatically.

 

It's interesting to note that neither Telegram's desktop nor web clients could use the exploit. The Desktop client added an additional mp4 extension to the APK file, stopping the exploit from running, whereas the Web client handled the file as an MP4.

 

Dangerous Party and Additional Measures

Though they were also discovered to provide further harmful services on the same underground forum, the threat actor responsible for this attack is still mainly unknown.

 

Despite this, Telegram's prompt resolution of the issue shows its commitment to user security.

Users of Telegram for Android are secure against this specific exploit now that the EvilVideo vulnerability has been addressed. It acts as a reminder of how important it is to update apps to be secure from possible threats.

Comments

Post a Comment

Popular posts from this blog

Gemini Budget Planner in Google Sheets

Image
Gemini Budget Planner in Google Sheets    Your AI-Powered Financial Guide for 2025 Gemini Budget Planner in Google Sheets : Discover how to use the Gemini Budget Planner in Google Sheets – an advanced AI tool from Google for Android users. Learn budgeting tricks, digital India apps, and top Android AI tips for high AdSense revenue. Gemini Budget Planner in Google Sheets: Gemini Budget Planning with Google Sheets If you're looking to smartly manage your finances while exploring Google’s cutting-edge technology, the Gemini Budget Planner in Google Sheets is the tool for you. It's not just a spreadsheet – it's a full-fledged AI-powered budget assistant. With the introduction of Google Gemini in 2025, Google has made it easier for Indian users to automate financial planning with ease, integrating powerful tools directly into Google Workspace. Google Gemini Android users now have access to advanced AI integrations, enabling smoother data analysis, auto-generated insights, and...
Read more

FRUIT CAKE - CAKE WITH STRAWBERRY LEMONADE

Image
  FRUIT CAKE -  CAKE WITH STRAWBERRY LEMONADE Fruit cake  - Lemonade Cake with strawberries. A delicate layer cake recipe topped with a tangy, sweet fresh strawberry buttercream icing and infused with lemon juice, zest, and fresh strawberries. While my beloved Lemon Blueberry Cake has always been a hit in our home, it also rapidly became a reader fave when I shared it last summer.  So many of you have tried it and commented on it. I'm grateful. It turns out that one of the most frequently requested questions regarding this dish is whether or not I can use strawberries in place of the blueberries.  Furthermore, although I totally see the craving for a strawberry and lemon combination, it's not as simple as just substituting these berries. I thus made a  Fruit cake strawberry variation of the lemon blueberry cake following our strawberry harvesting excursion, which you can read about here!  This  Fruit cake embodies summer's greatest qualities: it's...
Read more

What is ChatGPT ? Everything you need to know

Image
 What is ChatGPT? Everything you need to know     6/8/2024, We answer all of your ChatGPT questions.   It's easy to see why ChatGPT has taken the world by storm since its launch in late 2022. Surprisingly, the advanced AI chatbot can accomplish a great deal of tasks, from conducting a discussion to completing a term paper.   You might be surprised to learn that ChatGPT is capable of much more, such as making logos and music for companies.     We understand that a lot of people are trying to find out what features and restrictions ChatGPT offers. If you want to understand how to utilise this AI chatbot, take a look at our usage guide and these tips to get the most out of ChatGPT. We address all of your most frequent queries regarding ChatGPT here.     News and updates about ChatGPT (Revised on May 15) Sam Altman, the CEO of OpenAI, is promising users something that "feels like magic" during the company's ChatGPT event, which takes place later ...
Read more