can you get hacked from a cutt ly link?

Discussion in 'Lounge' started by petrrr, Nov 14, 2022.

  1. petrrr

    petrrr Kapellmeister

    Joined:
    May 15, 2022
    Messages:
    374
    Likes Received:
    41
    can you get hacked from a cutt ly link?

    someone gave me a cutt ly linked and i opened it and redirected me to google but not sure if its a method to be hacked?

    can someone confirm

    thanks
     
  2.  
  3. PsychaYogi

    PsychaYogi Newbie

    Joined:
    Apr 12, 2022
    Messages:
    6
    Likes Received:
    2
    getting hacked depends on how your firewall is setup, and how you use your browser.
    .. but on a more serious note, what do you mean by "hacked" ..?
     
  4. Valnar

    Valnar Rock Star

    Joined:
    Feb 21, 2020
    Messages:
    680
    Likes Received:
    308
    depends on the link, but probably not
     
  5. BlackHaze1986

    BlackHaze1986 Producer

    Joined:
    Jun 25, 2014
    Messages:
    338
    Likes Received:
    141
    Normally maybe some Browser Settings like the Startpage and notifications can be modified, but this can be easily undone by resetting your Browser. To be sure nothing unwanted comes to your System in the future i recommend using Voodoo Shield so you will be promted if something wants to install and you can deny or allow it before something happens. For your Browser i recommend Ghostery and Adblock Plus.
     
    Last edited: Nov 21, 2022 at 10:33 PM
  6. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    what do you mean?

    redirecting - that's why short url service can be used to hide real address/script/parameter/etc...

    short link preview allowed by some of services, next time try these tricks to preview address:

    cutt.ly - add @ at the end of a short links
    Code:
    short - https://cutt.ly/NMBK2tt
    preview - https://cutt.ly/[email protected]
    bit.ly - add + at the end of a short links
    Code:
    short - https://bit.ly/3ErPMBQ
    preview - https://bit.ly/3ErPMBQ+
    for any other service check faq at service website.

    also you can use next websites to preview short link:
    http://www.checkshorturl.com/expand.php
    https://unshorten.it/
    https://unshorten.me/
    http://urlex.org/
    http://urlxray.com/
    https://www.virustotal.com/es/
     
    • Like Like x 1
    • Agree Agree x 1
    • Useful Useful x 1
    • List
  7. stopped

    stopped Kapellmeister

    Joined:
    Mar 22, 2016
    Messages:
    147
    Likes Received:
    49
    you're essentially always safe unless you download and run things
     
  8. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    are you security specialist? no...
    maybe cookie sniffer? yes, it is still working! without downloading and running. just a simple link, something like that:

    [​IMG]
     
  9. stopped

    stopped Kapellmeister

    Joined:
    Mar 22, 2016
    Messages:
    147
    Likes Received:
    49
    I actually am one yes.
    what does a terrible website that hasn't patched 20 year old vulnerabilities have to do with people's behavior on their home machines?
     
  10. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    I can't understand what is the website you talking about...
    but...
    stolen google cookies and full access to google account? why not if it is possible?

    also, users like browser expansions, but this expansions with permission have a lot of vulnerabilities, and simple script can use these vulnerabilities.
     
  11. Marillionaire

    Marillionaire Noisemaker

    Joined:
    Monday
    Messages:
    13
    Likes Received:
    3
    Location:
    Honnywood
    Hi petrrr,

    Yes, in principle it is possible, although rather unlikely.
    At least it is possible to insert malware into the script of a site, so that you can get infected without downloading anything.
    You cannot seal any system 100%, but you can counteract most things.
    I think the biggest danger of getting infected is still on porn sites, and on sites that already have "Crackz", "Serialz" "Keygenz" etc. in the URL. So-called phishing sites are also a big danger.
    If you have a suspicion, @Talalu has listed some useful addresses.
    Personally, I have several systems, on several hard drives, which of course are never all connected at the same time. Furthermore, I have 1:1 backups of all systems.
    So far, I have been able to remove malware from one of the unaffected systems, or import a backup, most recently two years ago.
    You can also make a USB stick bootable with a so-called live system, on which you have several (!) Cleaning programs, such as KVRT, MRT or others. Of course update regularly!

    But as I said, there is no such thing as absolute security, not even with "real-time guards".
    Cyber criminals are usually not fools, but professionals!

    I hope I was able to help a little.

    Edit: PS: I run Server 2008 R2 modified as a workstation on all systems (except one "test" - system), and as long as I'm not forced at gunpoint, it will stay that way for a while!
    FB, Insta, Twitter, Tik Tok etc. are swear words and foreign words for me.
     
    Last edited: Nov 25, 2022 at 3:26 AM
  12. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    you are the one who understand me =)
     
  13. stopped

    stopped Kapellmeister

    Joined:
    Mar 22, 2016
    Messages:
    147
    Likes Received:
    49
    browser extension installation isn't something that happens automatically, so it's not going to randomly happen from a website visit without users interacting with downloaded files

    a site is not going to get access to another site's cookies unless something's already infected the local device to severely break the browser

    the reason I mentioned websites is that the screenshot you posted is of cross site scripting. which is an exploit for websites (and not one that affects a user's computer).
    essentially everyone patched cross site scripting on their sites by 2003/2004, especially as shown by exploiting cgi scripting's inherent security deficiencies. cgi is ancient and pretty much only used on abandoned sites
     
  14. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    F...!!! Are you really stupid or are you pretending?
    I say it again: users already have extensions, for example, for the Chrome browser. So there are a lot of vulnerabilities in these extensions! and these vulnerabilities can be exploited with a script that will use the extension's permissions (downloading and installing an "update" extension, accessing files/contacts/mail, etc.). even if only 5% of users use the extension, this means that every 20th user will be attacked.

    Do you even understand what I'm talking about? I just brought the most banal pymers that are known to everyone. yet they are still in use today!


    ooh yeah, it's all fixed! by your order? not funny. read statistics on attacks on users.
    how many sites use wordpress? how many different wordpress add-ons are on each site? now look at the lists of their vulnerabilities and tools for exploiting these vulnerabilities.

    I could show you a few wordpress sites (and these are famous developer sites) where i feel at home and look at users' personal data, i see purchases and licenses, discount codes and just paid libraries to contact... but search and discovery these vulnerabilities are my earnings.
     
  15. Talula

    Talula Platinum Record

    Joined:
    Apr 22, 2018
    Messages:
    915
    Likes Received:
    267
    At first, such people are advised not to update windows. because these updates install spyware and slow down the computer so that users buy new computers.

    then they say that he does not need an antivirus at all. this also slows down the computer, and also deletes files without the user's request.

    further, such people say that now on the Internet it is almost impossible to catch malware on your computer - feel free to follow any links, install any programs from any sources, etc.

    as a result, those who listen to them have all kinds of viruses on their computers and are not even aware of it. they download a new release from R2R or another team, unpack it to install themselves, and then post such infected releases on sites.

    and what does it lead to? right! to forum threads accusing R2R or another team of spreading viruses in their releases: here's a release, there's a virus...

    I AM TIRED OF THIS!!!
     
  16. stopped

    stopped Kapellmeister

    Joined:
    Mar 22, 2016
    Messages:
    147
    Likes Received:
    49
    I'm certainly not saying that there aren't lots of bad actors doing lots of bad things on the web (hell, I'd be unemployed if that were true). All I'm saying is that petrrr doesn't have to be paranoid about his safety when a website goes some place he didn't expect (unless he's interacted with files from said site). And, also to be thankful that the sister site exists to provide 99.999% safe copies of software
     
  17. Marillionaire

    Marillionaire Noisemaker

    Joined:
    Monday
    Messages:
    13
    Likes Received:
    3
    Location:
    Honnywood
    Hello, you two fighting roosters :), I no longer participate in the discussion. I have presented my view of things and that's it.

    Also, I am very disturbed that the thread starter has obviously lost interest in the matter, because he no longer responded to any post.

    Oh yes, one of my bad traits is that I'm very vindictive, and one of the good ones is that I hardly ever forget anything....:rofl:
     
  18. Sinus Well

    Sinus Well Audiosexual

    Joined:
    Jul 24, 2019
    Messages:
    1,356
    Likes Received:
    1,100
    Location:
    Germany
    If you are not sure if your computer has caught something, install GlassWire and check your incoming and outgoing connections.
     
Loading...
Similar Threads - hacked cutt link Forum Date
So…Heavyocity’s Instagram Account has been hacked. Lounge Jun 2, 2022
8Dio Hacked? Industry News Jan 16, 2022
My rapidgator hacked? Lounge Dec 6, 2021
Running a purchased and hacked vst next to each other Software Dec 2, 2020
I think my Rapid account was just hacked Software Sep 30, 2020
Loading...