• chevron_right

      Google removes fake Signal and Telegram apps hosted on Play / ArsTechnica · Wednesday, 30 August - 22:09 · 1 minute

    Google removes fake Signal and Telegram apps hosted on Play

    Enlarge (credit: Mateusz Slodkowski/SOPA Images/LightRocket via Getty Images)

    Researchers on Wednesday said they found fake apps in Google Play that masqueraded as legitimate ones for the Signal and Telegram messaging platforms. The malicious apps could pull messages or other sensitive information from legitimate accounts when users took certain actions.

    An app with the name Signal Plus Messenger was available on Play for nine months and had been downloaded from Play roughly 100 times before Google took it down last April after being tipped off by security firm ESET. It was also available in the Samsung app store and on signalplus[.]org, a dedicated website mimicking the official An app calling itself FlyGram, meanwhile, was created by the same threat actor and was available through the same three channels. Google removed it from Play in 2021. Both apps remain available in the Samsung store.

    Both apps were built on open source code available from Signal and Telegram. Interwoven into that code was an espionage tool tracked as BadBazaar. The Trojan has been linked to a China-aligned hacking group tracked as GREF. BadBazaar has been used previously to target Uyghurs and other Turkic ethnic minorities. The FlyGram malware was also shared in a Uyghur Telegram group, further aligning it to previous targeting by the BadBazaar malware family.

    Read 6 remaining paragraphs | Comments

    • chevron_right

      Des kits de piratage circulent en libre-service sur Telegram / Numerama · Friday, 25 August - 11:33

    Un programme pour créer un hameçonnage sur-mesure circule sur des canaux de l'application Telegram. Ces nouveaux kits simplifient dangereusement le piratage de données personnelles. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité

    • chevron_right

      De mystérieux manipulateurs poussent des Russes à brûler les bureaux de recrutement militaire / Numerama · Wednesday, 9 August - 10:52

    Plusieurs personnes ont été contactées sur Telegram en Russie avant d'incendier des bureaux des centres d'enrôlement militaire. Les accusés ont tous expliqué avoir reçu des menaces ou des instructions sur l'application de messagerie. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité

    • chevron_right

      « You got hacked ! » : que sont ces notifications étranges sur TikTok ? / Numerama · Monday, 7 August - 14:28

    Sur TikTok, les utilisateurs se plaignent de notifications bizarres, accompagnées d'un message inquiétant, invitant à regarder des vidéos. Derrière ces messages se cache un business particulier. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité

    • chevron_right

      Piracy Bots Channels Are Rampant on Telegram, But For How Long? / TorrentFreak · Friday, 19 May - 21:15 · 4 minutes

    telegram With over half a billion active users around the globe, Telegram is one of the most used messaging services.

    The communication platform helps to connect people from all over the world, with end-to-end encryption providing improved security when compared to some other players in the market.

    Telegram can also be an excellent medium to broadcast messages to a wider audience. Through dedicated one-way channels, people can share news, status updates, and emergency alerts, for example.

    Telegram on the Anti-Piracy Agenda

    Like all technology, these broadcast channels are not only used for legitimate purposes. Pirates use them too, as evidenced by regular mentions in piracy discussions. Not too long ago, the European Commission placed the Telegram app on its Counterfeit and Piracy Watch List.

    The app was also mentioned in recommendations to the U.S. Trade Representative (USTR) this year, with the International Intellectual Property Alliance calling for stricter policies on Telegram’s part, including the addition of Know Your Business Customer (KYBC) rules.

    “Telegram should be more accountable in relation to infringements occurring or being facilitated over its service,” the recommendation advised.

    “IIPA recommends that more be done to encourage KYBC disciplines on intermediaries like Telegram and to encourage operators like them to responsibly cooperate.”

    Courts Get Involved

    Piracy concerns and policy musings like these haven’t been restricted to lobbying and policy efforts. Telegram has also been taken to court on several occasions.

    In Portugal, for example , a local court ordered Telegram to block access to more than a dozen piracy-related channels. Similar measures were also taken in Israel and Italy. In India, Telegram a court order required Telegram to disclose the identities of several pirating users.

    By now, Telegram is well aware of the piracy challenges but that hasn’t put an end to the problem.

    While doing research this week, we randomly stumbled upon a Telegram bot that directed us to a channel sharing pirated movies. This wasn’t just some fringe channel; with over a quarter million subscribers it has a massive reach.

    Takedown… And Repeat

    This isn’t an isolated incident. Those who know where to look find no short of dedicated piracy channels and bots, some of which have massive audiences. That is, until they’re pulled offline.

    TorrentFreak spoke to the operator of a popular channel, who prefers to remain unnamed. They note that Telegram takes down links and channels all the time but that doesn’t seem to be much of a problem.

    telegram pirates

    Just as websites can easily switch to new domain names if they’re targeted, Telegram channels can rotate to new names as well. The operator we spoke with remained rather vague, but we get the impression that landing pages and bots are used to spread traffic and anticipate these takedown efforts.

    130,000 Enforcements

    We reached out to Telegram asking for some statistics and further detail on their takedown and enforcement efforts. However, the company did not respond to our request.

    The Alliance for Creativity and Entertainment ( ACE ) was willing to share its experiences. The anti-piracy group, which represents Hollywood’s major movies studios and Netflix, has dealt with Telegram for a few years now.

    “Initially, Telegram did not respond to notice and takedown requests,” says Jan van Voorn, Head of ACE and Chief of Global Content Protection at the MPA.

    Since then, Telegram has improved its effectiveness and as things stand today the majority of all takedown requests are processed within a day.

    “We have been focused on improving their [takedown notice] compliance and now have over 130,000 enforcements on Telegram with over a 90% removal rate, including many infringements removed within 24 hours,” van Voorn says.

    ACE also notes, however, that results are inconsistent and there’s still a lot of progress to be made in order to successfully crack down on piracy channels, bots, and repeat infringers.

    Active Collaboration

    This progress is in the making. The prevalence of piracy abuse on Telegram has resulted in more direct cooperation between ACE and Telegram, which aims to tackle the issue head-on.

    “ACE has established cooperation to address urgent escalations and has continued outreach to seek further improvements in removing infringing channels, disrupting piracy bots, and terminating services to repeat infringers,” Van Voorn explains.

    If this cooperation is successful, it may eventually become harder for pirate channels to survive. At least the ones with hundreds of thousands of members.

    That’s not the case today, however. While we were writing this article, thousands of new members flooded to the piracy channel we referenced earlier, which now has 271,720 , 274,006 , 277,169 , 280,339 members.

    Meanwhile, YTS, one of the largest torrent sites out there, also officially joined Telegram a few days ago. For now, it just uses the channel to share status updates, but you never know what will happen next.

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      Que s’est-il passé avec les adresses Telegram bloquées ce week-end ? / Numerama · Monday, 15 May - 09:21

    Les adresses Telegram étaient injoignables le samedi 13 mai, pendant quelques heures. Les internautes tombaient même sur une page d'avertissement sur du contenu pédopornographique. C'est un incident lié à un procédé permettant de censurer des sites, mais qui a été mal appliqué. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité

    • chevron_right

      Les portefeuilles de crypto sont ciblés par un nouveau « stealer » sur Mac / Numerama · Saturday, 29 April - 11:55


    Un nouveau logiciel malveillant de type « stealer » a été repéré ce printemps. Il cible les ordinateurs sous macOS et cherche à dérober de nombreuses informations, dont des portefeuilles de crypto-monnaie. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité

    • chevron_right

      Former Trump official led feds to Telegram group livestreaming child abuse / ArsTechnica · Friday, 3 February, 2023 - 19:24

    Former Trump official led feds to Telegram group livestreaming child abuse

    Enlarge (credit: NurPhoto / Contributor | NurPhoto )

    New details have been revealed through recently unsealed Cook County court documents, showing how federal investigators in 2020 gained access to encrypted Telegram messages to uncover “a cross-country network of people sexually exploiting children.”

    The Chicago Sun-Times reported that Homeland Security Investigations (HSI) agents based in Arizona launched “Operation Swipe Left” in 2020 to investigate claims of kidnapping, livestreaming child abuse, and production and distribution of child sexual abuse materials (CSAM). That investigation led to criminal charges filed against at least 17 people. The majority of defendants were living in Arizona, but others charged were residents of Illinois, Wisconsin, Washington, DC, California, and South Africa. Ten children were rescued, including four children actively suffering abuse at the time of the rescue. The youngest victim identified was 6 months old, and the oldest was 17 years old.

    Telegram became a preferred tool for defendants in this investigation, many of whom believed that police could never access their encrypted messages. At least one federal prosecutor told a judge that authorities never would have gained access; however, one of the defendants, Adam Hageman, “fully cooperated” with investigators and granted access through his account to offending Telegram groups.

    Read 8 remaining paragraphs | Comments

    • chevron_right

      « Êtes-vous mobilisés ? » : les Russes piégés par un astucieux site de hackers / Numerama · Wednesday, 18 January, 2023 - 15:40

    Alors que de nombreuses rumeurs circulent sur une nouvelle mobilisation massive en Russie, des pirates ont profité de l'effet de panique pour créer un site afin de voler les données des citoyens. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité