Google made Scamming Easier!
Vložit
- čas přidán 4. 06. 2024
- Google decided to release new TLDs (top level domains) which are the variations to .com (.net, .gg, .ca, etc.). And these new TLDs are .zip and .mov. Now a website like fortniteburger.zip sounds pretty cool, but it really just gives scammers another tool to trick people into clicking onto malicious links.
And when I mean malicious, I mean it. Imagine clicking on attachments.zip, and downloading attachments.zip. You wouldn't really bat an eye. But what happened is that you downloaded malware from attachments.zip (a website with the new TLD) and now you're about to run it. YIKES. Google really did make scamming easier.
My grandma definitely losing half of her retirement on this one, big ups google. Maybe subscribe so I can help her get it back.
SOCIALS
-----------------------------------------------------------------------------
Discord Server
/ discord
Twitter
/ notexttospeech
TIMESTAMPS
-----------------------------------------------------------------------------
00:00 - Okay google, don't mess up.
00:25 - SCAM LINKS!
02:16 - Advanced Scam Technique
06:14 - More Phishing Links
08:13 - Why - Věda a technologie
Always leave it up to the largest multi-billion companies to make the internet a worse place because the ones in charge can't think five minutes ahead
Oh, they can. It's just that they keep looking down the best case timeline where everything goes perfectly and they make all the money.
If google makes this cheap, its gonna cause a lot of havoc
My personal theory is, they want the chaos it will cause (notice how gmail never linked the domains from text including . zip?), They want to create a problem they can then sell the solution to. People are going to want chromes site detection for malicious sites that goes outside of just https cert checking even more now. As well as mistrusting movs for sharing videos, and zips for sharing folders, thus leading to higher youtube and google drive usage...
no way kogasa tartara from the hit game touhou
@@lightningblaze6449 yep u guessed it. It probably just opens up possibilities for big companies to create blockware against this stuff to sell at high prices
If NTTs decide to make more videos that are not related to Discord, I wouldn't mind, this man takes the time to do very well done research.
+1 NTTS gave very solid examples of how they could be abused
Most common NTTS W
@@NoTextToSpeech please keep doing these cybersecurity videos! i had no idea about the new tld’s and didn’t know urls could be exploited with the username:password thing. your videos are really engaging and easy to digest so imo they’re great for educating people about online safety
Agreed. I only watch this channel because it's cybersecurity related so it's nice to see more cybersec related coverage.
i think this is the best idea ever. We definetly need a .exe domain
Sonic.exe
🤣🤣🤣
Don't give google any ideas
YouAreAnIdiot.exe
word.exe
These people who register these domains to prevent them from being taken by scammers are actually legends (even the rickrolls)
Chaotic good internet dudes being bros.
Specially* the rickrolls
Yeah but how many time they will put money on these domains? 🤷🏻♂️
@@corrompu98 tbh its very cheap and you only pay yearly at least here 😅
@@arcanep I mean, you talk as if he's going to preserve just one.
As a note, Firefox has an additional protection against this. If you actually try to go the site with the username thing, it'll pop up a warning saying is this the site you really want to go to.
Firefox > Chrome always, unless a site won't work and forces you to use Chromium.
@Deprecated Firefox is an actually great browser tho, I made the switch in January and haven't looked back
@Verm Fair enough if you had a bad experience with it, but for me it's been way better than Google ever was.
@vonKarma1186 I really only use Google now cuz my preferred art program doesn't work as well on Firefox
@@vermski what kind of add on are you even using that doesn't work on firefox lmao, big cap here
wouldnt be surprised if google did this on purpose to sell some sort of solution at a later point
Not sure how Google didn't think this through. They're one of the largest companies in the world, and they can't even afford to consider that this could happen.
Ah you see, being a big corporation means that they can afford to fuck you over, thats all it means at this point in society
The end user should be smarter
@@topshelf5032a good design has to take in consideration people from every age and every range of knowledge
@@topshelf5032 the slash is too sneaky to be detected
But think of all the money they'll make from the scammers (and security professionals trying to protect from scammers)!
It’s funny the fact that lots of companies make new features without (most of the time) thinking about if scammers can take advantages of them or not
They assume people aren't dumb
i bet they do, so they do it and then they sell their own “solution” to the problem they made
With big corporations like this, I think it's safe to assume malice before stupidity, since this had to go through *dozens* of people!
@D.R.M. Mefreji that's dumb of them
@@youlean Yes, agreed
And you wanna know the worst part? Well, apparently this concern was actually brought up, but they decided "naaaah it's fiiiine having just one more tld that no good website would probably use anyway because it's so stupid is deeeefinately worth opening the floodgates for these scams"
Gotta love it when No Text To Speech uploads! Google loves dissapointing people.
I agree
This is another reason why I left Google for Bing.
@@overshabby k
Don't you love it when giant corporations ruin themselves
Yes because they know theyre so big no can afford not to use it so they get away with everything
Ruin? You completely got this backwards my man, they are getting EVEN RICHER with this!
Yes I love it.zip
I wonder how Discord and Google CEOs aren't best buddies, they have some of the best ideas ever!
Heard about the .zip URLs, glad to see you're spreading awareness about this. Hopefully browsers or something will have a popup letting people know it MIGHT be suspicious.
Firefox always had that
Well guess who the most popular web browser is owned by, google. The ones who caused this whole thing in the first place
Fr.zip uwu.zip q.zip w.zip e.zip r.zip t.zip y.zip u.zip
so did google just say that they want to make mov and zip files go extinct like the com files they were talking about? Google's old motto of "Don't Be Evil" definitely seems like something they left it the past.
No, they didn't.
Can't wait for google to drop their own versions of zip and mov
@@Mathman2028 they probably have a hundred different versions of zip and mov
many softwares use different versions of zip to store their own things, so you can probably find some random extension that opens up with 7zip
@@Mathman2028 you mean brotli and vp9?
Google and discord, both never fail to disappoint 🙏
If you'd spend your time actually watching the video instead of writing low-quality commands for absolutely no *ucking reason you'd know that discord actually prevents this scam from happening on their app
@@quinacon I’m aware of it, still discord never fails to disappoint 😮
@@quinacon Pretty sure hes talking about the new discord username system or any other bad updates discord has made, not that discord is letting the .zip thing work as links
@@12a6bobo yea, seriously discord has been making REALLY bad decisions recently and even in the video NTTS said he doesn’t know if this was before or after the .zip came
@@12a6bobo I'm pretty sure he can't watch an 11 minutes video in 2 minutes so he just thought of something stupid to get likes
I love that people are actually sharing this all around, I have heard about this twice on ThioJoe's channel as well as twice on LTT channels
0:54 how tf did that keyboard smashing sync up so well
0:48 - This is basically why I hate talking about Minecraft Bedrock Versions because there are so many numbers that it can look like a weird IP Address
2:28 YOU ARE PRONOUNCING IT CORRECTLY!!!!
CONGRATS!!!!
👍 😂😂😂
i really wouldn't mind any more videos like these! your discord related videos are of course amazing but I also love these scam videos! they're fun to watch and also educational !! ^_^
This man makes any tech news so interesting
I like how i initially started watching this channel to keep myself more aware of scam/spam, but now i'm watching to find funnier ways to troll my friends. Thank you No Text To Speech for giving me good ideas
Damn, google is just devious at this point.
Fr
It gets a little... quirky at night
@@fallacy08_shrine pause
@@fallacy08_shrine proof?
@@fallacy08_shrine sussy google
Thanks for bringing more attention to this. it's such a bad idea and I hope it gets changed
yooo spore pfp?
spore pfp = got my respect
childhood flashed before my eyes when i saw that spore pfp
Spore galactic adventures? Let’s go!
shoutout to the people who bought some of the domains to warn people about these scams and prevent scammers from using them. but they shouldn't have had to do that to begin with, why the fuck did google think this was a good idea 💀
Always the big multibillion dollars companies do this, whoever was incharge of this change didn't think if it was a bad decision.
Cause scammers are customers as well.
I'm almost confident that this was created with malicious intent! Scammers will use dozens of URLs, which they have to pay for, and _who_ gets that money? *Google!*
I'm glad I watch you, it's great to learn something new and also stay safe.
Who the hell thought this was a good idea, and who the hell approved it? Did they not see the possibility of this? Utter idiocy and incompetence, I swear.
Fun fact: Firefox shows a "are you sure you want to log in with username ...? this may be an attempt to trick u" warning before visiting a url with url login
I've been watching a whole bunch of these. And I absolutely adore the outro.
I'm just glad that SOME people are watching out for the monkey brain idiots by registering URL's that could be scams and making them into warnings instead.
Dont blame the user bruh like if for some reason your cars companies decide to swap the brake with the gas then they are at fault
Google makes profit off both good Samaritans and cyber-criminals. This is what they want.
@@Sunzen44 If people are blind enough to click on random links then they deserve to be scammed.
@vonKarma1186 Yeah, but I'm not talking about people that know everything about computers or people that don't. I'm talking about the everyday person that clicks on random links that are VERY NOTICABLE in that they're a scam yet STILL clicks on it.
@vonKarma1186 I made the original comment saying that I'm glad there's people out there that protect those dumb enough to click the links even though they're really noticeable, because, believe it or not, there ARE people stupid enough to click on said links.
Gotta love it when No Text To Speech uploads ❤❤
One of the main reasons I watch your videos is to be updated with whats been going on. I certanly didn't knew about that "dot zip" and "dot mov" update on google, but I saw your video on my recommended and just ty. If i didn't knew this later on I would just get malware of that. Please continue making videos about this that, even if they aren't about discord. They are important to make because theres a big danger going around with a new method for scams.
And thats all I got to say. Continue being an awesome youtuber and all the best.
love ya too *kiss* *Kiss*
Waited for your take on this topic
Thanks!
I hope they undo the new url domains, cause I really don't want to deal with this and I don't want to have to explain this to people who aren't the wiser when it comes to clicking stuff on the internet
Undo domains is a thing, you don't want to do. What is possible, to don't allow new ones
@@schwingedeshaehers TBF it's at the domain registries' hands, although it might cause some chaos...
@@erikkonstas to disallow new addresses yes, but close everything could be hard
4:44 But what are they gonna do if steam 2 goes down too ? Valve doesn't know how to count to 3 !
they use v2.1!
Thank you for the explanation at 7:05, I wasn't completely sure how sub-domains work before this - so will definitely be more vigilant.
thank you from the security community for making this video
I wonder what Google, in its infinite wisdom, will add next. .txt? .pdf? .exe?
"a .txt URL is for text-based platforms, like ao3. If you want to let someone know that your website is dedicated to reading or writing text, use a .txt"
"a .pdf URL is for viewing-based platforms, if you want someone to see but not edit, use a .pdf"
"a .exe URL is for discussing plans. When you need to discuss or plan things over the internet, use a .exe"
Love the madlad who turned the attachment into a rickroll
I am a somewhat techy guy (I've done coding here and there for fun), so I know how to properly decipher if a domain is gonna be what it says or a virus. But there are a lot of people that would fall for this. My little brother just got a pc recently and this seems like something he'd fall for trying to mod games or something. Not only did Google come up with the worst domains possible, but ICANN had let it pass as well.
Congrats on 400k!
Ah yes Google using its infinite wisdom.
Then: Google chrome, the safest way to browse the internet
Now: Google chrome, a scammers dream
right, i use microsoft edge
@@liqznaa id rather get scammed then use microsoft edge😂
Firefox is better than Chrome
@@Bleyk and no one use it for some reason
@@Somanybot almost everyone used that, but when chrome came, everyone switched because " *google* chrome"
Great, now I have to make another internet safety Powerpoint for my grandma!
Google never fails to disappoint 🔥
1:42 your WHAT proposal?
BEEN BIGING THIS FOR LIKE 4HRS NOW I LOVE IT HERE
Discord actually converting the links to the malicious one for you? Wow i would of never expected that, good job on discord
What do you mean? The original link is already malicious. Plus would a domain that had youtube in it be more trustworthy then just fortnitehacks? I think so, which is exactly why it doesnt show the youtube part of it.
just tested it, opera gx (yes the 739th chromium based browser) does have the nice little feature of subdomain shading that firefox has
0:24 uhhhh... nice files you have
My dad had those flies
@@BlobyTheBlob15even fortnite rule34?
@@VilactDoesntSayShitYourselfNowwe don’t talk about that
I appreciate all the good people out there who claim the dangerous domains to educate people about online safety
The way you end your videos is so cute
Can't wait for this to backfire and lead to random accounts being terminated for no apparent reason on different platforms.
A CZcamsr I watch once got strikes against their channel because they did the due diligence of linking to a mod they used in their playthrough of a game. YEARS LATER, that domain gets sniped and links to malware, and the CZcamsr is automatically in the firing line for linking dangerous content.
This is almost certainly going to lead to random typos and discussions on file types being flagged.
Someone should sue ICANN for reckless endangerment of property. I mean, come on, it's only a matter of time before bad internet awareness in combination with these new filename-confused TLDs causes companies to start losing major amounts of profits.
Yesterday I dreamed you where advertising atlas earth and I have never been more dissapointed. You even made a cover of that one ad.. XD
google is really dumb as hell for literally adding the ".zip" plus with the @ thing the scam is even more harder to figure it out
also google does not disappoint when it comes to Disappointing users
5:42 That existed for years... I tried to test the http login system (HTTP Basic Auth for the nerds) out using normal domains this way before but it turned out to work like you just showed.
6:20 polish domain xD
Polska Gurom!
Polska dotarła
Google & Discord are partners when it comes to disappointing
i find it funny how the biggest companies tend to have the worst security, unlike smaller companies
Imagine someone don’t knowing this guy trying to scam him😂😂…
Wait that can be a very funny video😐
People usually watch NTTS for cyber security information and discord news. I watch NTTS for the kisses.
We are not the same.
he be kissing me
I watch him because
The discord link thing was something for a while. It was able to show ipgrabbing sites like grabify links
Well damn, i liked to think of myself as a internet veteran but i didn't even know about the @ thing, you learn something new every day i guess.
BROO I MADE A SUGGESTION ON UR SERVER 6:44 ,
THERE ARE NEW ROBLOX SCAMMERS EXPLOITING THAT FOR A WHILE NOW
5:38 It was definitely before, I tried it the day the .zip domain released and it shortened
Yeah same. There's no way Discord would be that fast to respond.
@@natec1 Yup
I can see Web browsers give anti-phishing warnings on “.zip” domains, or even treat all .zip websites as phishing websites.
If I had to guess, these changes are meant to make piracy seem more dangerous than it actually is. By making people scared of .zip and .mov links, less folks are likely to start pirating since these file types are most commonly used (.mov for pirated movies, .zip for pretty much everything else)
Kinda makes sense as twisted as it is
Cool, now we can teach then about torrents.
@@TOTU inb4 .torrent becomes a TLD
@@MasicoreLord then huzzah magnets!
bruh what
Bruh the double love you at the end makin me feel lonely. Thx ntts
so the solution is to use your group policy editor to block all zip domains and you'll be just fine
This does not work if your Windows license is not Professional/Enterprise. I doubt Home/OEM license have policy editor.
@@RyuSei544732 linux user:
@@Somanybot Not all of us are damn tech geniuses okay
I look at a laptop wrong and it dies
@@RyuSei544732 it's not like you can't just upgrade your home to pro cheaply lol
@@_lun4r_ "Cheaply"... you know that money feeds some people for weeks right...?
how long will it take for a google employee to fall for a .zip domain scam
Everyone should know about this by now as you're like 100th youtuber talking about it
literally learning top tier internet safety from this guy
at least you can use nextdns to block all zip domains to avoid getting tricked
Except for everyone that doesnt know that nextdns even exists
@@erroristlagoon1130 at least I'm trying to help spread the existence of the app/software after watching ThioJoe mentioned it to block newly made sites and a recent video about the zip domains
As an indian this video made my day
😂😂
Phew. Now I can be aware of such scams.
Thanks bro 👍
what browser extension do you use to highlight your tabs like that?
Google made Scamming Easier!
This isnt related to the video but i just love it when he says he loves me at the end of his videos it makes my day better
1:47 tweeter 💀
my favorite social media website, tweeder
NoTextToSpeech uploaded a new video 4 minutes ago? Time to get the top comment.
potato
it was a thing before in discord, they just by default strip the user identification in markdown (ist still here technically), it have no link with the whole zip mess
My day is now better because NTTS double loves me now.
I will get rid of my school account that way 7:52
Yeah jk i have a gimkit account
you pronounced kubernettes correct
I just learned more about URLs from this video than what my teachers tried to teach me xD
What is that theme NTTS is using? It looks really cool.
u rlly love me? 🥺❤
yes
No 🥺❤
@@blahaj. ur lying he said he loved me 😭
Remember that past Google motto: do no evil? Now it’s different. I think this explains everything
Gmail did something too, if i had 5-10 spam emails a year, now i have 50 a day.
Old email, since beta version of gmail pwned via myspace, lastfm and many more but theirs filtering was way better before. Now some spam gets into inbox even ...
Great video !
yo NTTS, i dont think ur gonna see my comment but, how do u get the blue and orange new creation tabs?
btw google is doing a ridiculous job
discord saves you, but also throws you,
You can place the link in a 'code block' and it will not format, like this:
```
Link here
```
People also can't click it then...
I was watching this as a web-dev, and I was wondering what was the whole fuss about...
Then you reminded me of the @ sign for Basic Auth...
oh no...
"I said i love you twice because i double love you" is so wholesome omg!!
1:38 is that a reference to the veryfunny trojan where it says on the first msgbox "Fun Fun Fun - A very funny thing is happening"
9:55 ERM ACTUALLY I DID
All jokes aside, coming back to this 10 months later, I'm disappointed it's still a thing.
since I have windows 11 pro I have the group policy editor and just use that to straight up block the .zip tld
best outro on youtube (i just watched another video before this one)
Can we just appreciate that rickroll video put in the video