Telegram No Sound? Get Your Alerts & Calls Working Again 🔄 webstick.blog/telegram-my-te… #TechSolutions #SoundNotWorking #AudioFix #TelegramIssues #TroubleshootNow #StayConnected #WPBeginner

FIX THE AUDIO FIX THE AUDIOFIX THE AUDIO FIX THE AUDIOFIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO FIX THE AUDIO

FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIO FIX THE FUCKING AUDIOFIX THE FUCKING AUDIO FIX THE FUCKING AUDIO

2️⃣ The Weapon: AUDIOFIX & MINIRAT The actor deploys architecture-aware macOS malware: AUDIOFIX: A Python-based infostealer that harvests credentials from 26 crypto wallet extensions, cloud keys (AWS, GCP, Azure), and active communication apps (Slack, Telegram).

⚠️ Alerta de seguridad en el ecosistema cripto ⚠️ Investigadores de Wiz detectan un malware, AUDIOFIX, que se instala a través de reuniones falsas en LinkedIn. Creado por el grupo JINX-0164, busca robar credenciales de desarrolladores y comprometer infraestructuras de software. Se ha vinculado a ataques en paquetes npm, exponiendo información sensible de proyectos de criptomonedas. Se recomienda activar autenticación multifactor y revisar repositorios por actividades sospechosas.

As jobseeker and IT / Web3 / crypto kita kudu hati-hati. Jadi ada heker pake cara baru namanya JINX-0164. Pura-pura jadi HRD di LinkedIn, ngajak interview video call, terus ntar sengaja dibikin error audio biar download file yang ternyata malware macOS (AUDIOFIX).

暗号資産企業を侵害した攻撃グループが、AWSなどのクラウド認証情報を盗みながらほとんど悪用せず、むしろ社内の開発基盤に狙いを定めていたと報告されています。社内のGitリポジトリにマルウェアを仕込み、コミットの作成者情報を書き換えて出所を隠蔽。改ざんに気づかない同僚がそのコードを取得してビルドすると、その端末も感染し、組織内へ広がります。財務的動機を持つこのグループは「JINX-0164」として新たに追跡され、侵入はLinkedInの偽の商談・採用を装った接触から、偽のWeb会議クライアントでmacOS向けマルウェアを送り込む流れです。 このグループは、社内コードへの注入で組織の内側に、トロイ化した公開パッケージで外部の利用者にと、内と外の二つの経路で感染を広げていました。開発者が日々取り込むコードやパッケージ自体が感染の媒介となる点に、防御の難しさがあります。 【要点の整理】 ・初期侵入はLinkedInの信頼できるプロフィール（正規アカウントの乗っ取り、または攻撃者が作成し後に削除）からの接触。Microsoft Teamsを装った偽ドメインで偽の会議クライアントを実行させ、情報窃取と遠隔操作を兼ねるmacOSマルウェア「AUDIOFIX」（Python製）を配布。正規の音声ドライバーcoreaudiodになりすまし、macOSの自動起動の仕組み（launchctl）で常駐する ・AUDIOFIXが盗むのは、macOSの資格情報保管庫Keychainやブラウザの認証情報、MetaMaskやPhantomなど多数の暗号資産ウォレット拡張、SSH鍵、AWS・GCP・Azureのクラウド鍵、GitHubトークン、Slack・Discord・Telegramのセッションまで。クリップボードの中身も常時監視 ・横展開は開発基盤に向かう。入手したGitHubトークンでCI/CD（ビルドや配布を自動化する仕組み）のシークレットをOSSツールnord-streamで抜き取り、AUDIOFIXを社内リポジトリに注入。コミット作成者の偽装・mainブランチへの直接書き込み・既存ブランチの乗っ取りで他の開発者の端末へ拡散 ・公開パッケージも標的。2026年4月にはnpm（JavaScript系のパッケージ配布）の「[@]velora-dex/sdk」に3行のコードを追記し、Go製の軽量バックドア「MINIRAT」を呼び込むサプライチェーン攻撃を実施。GitHub上の公開ソースは無改変で、npm側のみが侵害されたとみられる ・手口は北朝鮮系のUNC1069やSapphire Sleetに似るが、インフラの重複は確認されておらず、別個のアクターとみられる。なりすましコミットは、GitHubのコミット署名検証機能「Vigilant Mode」が付ける「未検証」バッジが発見の手がかりになった形 詳細は以下を参照： wiz.io/blog/threat-actors-ta…

New actor Jinx-0164 targets crypto developers with fake recruiter LinkedIn lures, deploying Python-based Audiofix stealer that hijacks CI/CD pipelines and trojanizes npm packages to spread laterally. #DFIR_Radar

🚨 WEB3 HR TRAP: A dangerous new threat actor is hunting crypto developers on LinkedIn. 🚨 If you are a developer, founder, or project manager in Web3, a fake job offer could completely compromise your local device and allow hackers to inject malware directly into your live production code. Here is how the "JINX-0164" attack chain unfolds: 1️⃣ The LinkedIn Bait: Sophisticated fake recruiter profiles approach you with high-paying job opportunities or technical evaluations. 2️⃣ The Trojan Tool: You are instructed to download a proprietary "video conferencing tool" or standalone application to join the technical interview. 3️⃣ The Local Takeover: The download secretly deploys custom macOS malware (AUDIOFIX and MiniRAT), immediately scraping your iCloud Keychain, private keys, and browser extension tokens. Once inside, attackers can pivot directly to your company’s CI/CD deployment pipelines to hijack your entire protocol's software updates. #Web3Security #AppSec #macOS #LinkedIn #JINX0164 #ShieldGuardLearn 👇 Please check the comments to read the full Scam Alert & Learn how to protect yourself.

Crypto attacks don't always start with a wallet. JINX-0164 is targeting crypto firms with fake recruiter lures, LinkedIn profiles and meeting invites that lead to rogue conferencing domains. Victims are then pushed to download a fake fix, which installs macOS malware called AUDIOFIX.

⚠️ JINX-0164, a new threat actor, targets crypto firms with fake LinkedIn recruiter messages and custom macOS malware. Active since mid-2025, it deploys AUDIOFIX — a Python-based infostealer and RAT that steals credentials and targets CI/CD systems.

New financially motivated threat actor JINX-0164 exploits LinkedIn social engineering and CI/CD infrastructure to target cryptocurrency developers with custom macOS malware. Active since mid-2025, the group successfully executed supply chain attacks via compromised npm packages. Campaign breakdown: • Initial access via fake LinkedIn recruiter profiles offering meetings on spoofed conferencing platforms • AUDIOFIX Python-based macOS infostealer targets 51 crypto wallet extensions, SSH keys, AWS/GCP credentials, and session tokens • CI/CD hijacking through developer impersonation in Git commits, injecting malware into internal repositories (T1195.002) • Supply chain attack: trojanized @velora-dex/sdk v4.9.1 on npm delivered MINIRAT Go backdoor • C2 infrastructure uses datahub[.]ink, cloud-sync[.]online, byte-io[.]us with AES-256-CBC encryption DFIR artifacts: • XOR-encoded passwords in ~/.zsh_cache indicate successful credential phishing • LaunchAgent persistence as com.microsoft.teams.coreaudiod or com.apple.Terminal.profiler • Unverified Git commit badges in GitHub Vigilant Mode expose developer impersonation • Clipboard monitoring logs with timestamps in malware working directory Hunt for unsigned binaries masquerading as system processes (coreaudiod, ChromeUpdater) with outbound HTTPS to low-reputation domains. Monitor npm package modifications and Git commits with mismatched author/committer fields. #DFIR_Radar

Hearing static noise from your Android phone?📱⚠️ Here’s what’s causing it and the quick fixes to clear your sound instantly. 👉Full guide:devicemag.com/why-is-my-phon… #AndroidTips #AudioFix #TechHelp #MobileTips #Smartphone #SoundIssue #PhoneFix #Trending

Why is your phone volume suddenly low?🔊📱 Here’s what might be causing it and the quick fixes to boost your sound back up. 👉Full guide:devicemag.com/why-is-my-phon… #TechHelp #AudioFix #MobileTips #Smartphone #iPhoneTips #AndroidTips #SoundIssue #Trending

Need to extract audio from a video? Try AudioFix for that and more. -> #interviews #journalism #music bit.ly/_AudioFix

Smartphone Tips : मोबइलवर कॉल आला, गाणी वाजली, पण आवाज कमी येतोय; काही सेकंदात असा करा प्रॉब्लेम सॉल्व्ह #SmartphoneTips #MobileHacks #TechTips #PhoneProblems #SpeakerCleaning #AudioFix saamtv.esakal.com/lifestyle/…

GarageBand playback sounding choppy? Here’s how to fix lag, glitches, and get smooth audio performance instantly. devicemag.com/garageband-pla… #GarageBand #MusicProduction #AudioFix #MacOS #SoundDesign #MusicMakers #ProducersLife #DAWTips #TechTips #HomeStudio #BeatMaking

Need to extract audio from a video? Try AudioFix for that and more. -> #interviews #journalism #music bit.ly/_AudioFix

Is your AirPods Pro bass sounding flat or uneven? Here’s how to bring the beat back and fix the bass issue fast! devicemag.com/airpods-pro-ba… #AirPodsProFix #AirPodsPro #BassBoost #SoundFix #AppleTips #AudioFix #TechHacks #AirPodsTips #MusicLovers #AppleSupport #SoundQuality

Muffled sound or poor mic quality on your AirPods? Here’s how to clean your AirPods microphone safely — and get crystal-clear audio again! devicemag.com/how-to-clean-a… #AirPods #AppleTips #TechHacks #AirPodsCleaning #AudioFix #GadgetCare #iPhoneTips #SoundQuality #AppleSupport