【重要通知】播放页暂停广告功能即将上线
播放页暂停广告将于4月10日上线。收益将基于转化效果计算，与基础激励合并展示。
播放页暂停广告，是指用户在App端手动暂停视频时，概率触发的展示在播放器下方的广告。
为确保用户正常观看体验，用户可在广告出现前或广告出现后随时取消、关闭该广告。
若您希望关闭播放页暂停广告，您可前往【创作激励-广告设置-暂停广告设置】操作关闭。
感谢您的支持与理解。

EXPOSED: Source Code Evidence of Nekogram Phone Number Harvesting

1. Exfiltration Logic: The function uo5.g() (reconstructed as logNumberPhones) silently collects the UserID and Phone Number of every account logged into the app (up to 8 accounts).

2. Transmission: Data is sent via Inline Queries to the bot @nekonotificationbot. This is done programmatically, so no message appears in your "Sent" history.

3. Target Bots: Three bots embedded in the client's obfuscated code:
@nekonotificationbot: Receives the automated phone number uploads.
@tgdb_search_bot and @usinfobot: : An OSINT bot mentioned in the obfuscated classes.

4. Security Token: The app uses a hardcoded secret key 741ad28818eab17668bc2c70bd419fc25ff56481758a4ac87e7ca164fb6ae1b1 as a prefix for the stolen data, likely to authenticate with the bot's backend.

5. The image shows that Nekogram always wants to get the "reg date".

Unfortunately the Google Play Store version is also affected!!!

Follow @TechLeaksZone