r/Glasgow Tools

Title
Author	Vinylcrackhead
Comment	The low tech way of doing it is getting them to click a link and submit their email for a log on page, bonus points in getting them to confirm if they are on android or apple. Once you have the email address and potential password harvest all other passwords from various online database breaches. Once you've done that you can access icloud (providing they aren't using 2 factor, I think apple make it mandatory now, my pals on iPhone I'm on android, I know on android you have to opt out rather than opt in) from there is easy to clone the data to a new phone. That's the low tech way. There are heaps of zero day exploits like the bezos one that can be embedded in pictures and videos all for sale if you know where to look. I highly doubt someone is putting a note through my pals door just to use a potentially expensive zero day WhatsApp exploit)
Reddit Link	https://www.reddit.com/r/glasgow/comments/mkt11s/just_a_warning_about_a_scam_going_round_east_end/gti5606/
Created	Mon 5th Apr 2021 11:14pm
Status	normal ()

The low tech way of doing it is getting them to click a link and submit their email for a log on page, bonus points in getting them to confirm if they are on android or apple. Once you have the email address and potential password harvest all other passwords from various online database breaches. Once you've done that you can access icloud (providing they aren't using 2 factor, I think apple make it mandatory now, my pals on iPhone I'm on android, I know on android you have to opt out rather than opt in) from there is easy to clone the data to a new phone.

That's the low tech way. There are heaps of zero day exploits like the bezos one that can be embedded in pictures and videos all for sale if you know where to look.

I highly doubt someone is putting a note through my pals door just to use a potentially expensive zero day WhatsApp exploit)