Через час после окончания сегодняшней акции приглашаем собрать те самолетики, которые Вы найдете у Вашего дома.

RCE on Github.com
Source: X (via Kirill)

Each git commit remember me @toberg

Funny fact: in Moscow, it is hotter than in Tehran.

https://cognitum.one #links

Telegram does not need to have its message encryption broken for users to be tracked at the network layer.

Telegram sends MTProto over unencrypted TCP, exposing auth_key_id - a long-lived identifier tied to the client’s authorisation key. An ISP, hotel WiFi operator, mobile carrier, transit provider, or surveillance system on the network path can see that identifier if they can observe the traffic. It can remain stable across app restarts, IP changes, VPN use, network switches, and location changes.

Secret Chats protect message content, but this leak is below that layer. That makes the attack passive.

The risk is in retroactive correlation. Think a journalist using Telegram from different networks for months, then joining hotel or corporate WiFi under a real name.

That one identity anchor could make old logs searchable for the same auth_key_id.

The fix is simple - mandatory transport encryption for all MTProto connections, with no unencrypted fallback. Telegram chose not to do this.

Source: @kaepora symbolic.software/pdf/gnmx-01.pdf

P.s.: Long life, global passive observer

Awesome and memorable! Black and dirty smm in action.

Did you prepare yourself for it?