Say you handed me your phone, what’s the worst I could do in 10 seconds?

Lobsters is a community-driven platform for sharing and discussing links to articles, tutorials, and projects related to technology and programming. Readers can learn about a wide range of topics, from software development and system administration to cybersecurity and artificial intelligence. With user submissions, comments, and voting, Lobsters provides a platform for collaborative learning and knowledge sharing among technology enthusiasts.

Lobsters

The post discusses a potential exploit in Telegram's web client that allows an attacker to gain access to a user's account using a URL with the account's token. The post also highlights the shared session between different web clients and the difficulty in exploiting the vulnerability remotely. The author suggests a mitigation similar to QR code logins.

Stealing your Telegram account in 10 seconds flat

<p>Interesting article, but what I find the coolest are the “screenshots”. They’re not screenshots at all!!!</p>
<p><img src="https://media.daily.dev/image/upload/s--gIOOUVA0--/f_auto/v1714727101/ugc/content_b93b5552-4290-430f-b0ab-fad7e1dd61dc" alt="image"></p>
