Cool Connor. You running this as affiliate/manInTheMiddle I presume?

Work...... #TrenchMob #PRAY&BALL #ManintheMiddle #Mrslepton

The problem isn't the middle. - It's that no one chooses it. - The Right always goes right...in circles. - The Left always goes left...in circles. - The Middle: - Pulls Left - Pushes Right - Seeks Truth - Seeks Understanding - Builds Bridges - Keeps Everything Together - Balance - Common Ground - Strength - Unity #maninthemiddle #commonground #balance #strength #unity #WelcometotheCipherracket #Cipherracket

What we found inside the MEXC Android app. A TrustAllCerts implementation that accepts any certificate. An exported ChangeHostActivity that lets any app redirect MEXC to a malicious server via deep link. 34 exported components. Debug activities in production. The APK is a forensic goldmine 👇 We decompiled the MEXC production APK with apktool and jadx. Package: com.mexcpro.client. What follows is what we found in the actual compiled code. File paths. Line numbers. Exact bytecode. Everything independently verifiable by anyone who downloads the APK and decompiles it. Finding 1: TrustAllCerts. File: smali/i0/b.smali This class implements X509TrustManager. It has three methods. All three are empty: checkClientTrusted → return-void checkServerTrusted → return-void getAcceptedIssuers → return null This is the textbook TrustAllCerts antipattern. The app accepts ANY certificate. Self-signed. Expired. Wrong domain. Anything. What does an empty checkServerTrusted mean? It means a maninthemiddle attack on any WiFi network is trivial. The attacker presents a self-signed certificate. The app accepts it. All API traffic is now visible to the attacker. Auth tokens. Trade data. Withdrawal requests. Everything flows through the attacker's proxy in cleartext. The network security config confirms it. File: res/xml/network_security_config.xml <base-config cleartextTrafficPermitted="true" /> Cleartext HTTP traffic is allowed globally. Not just for debug. For the entire app. Combined with TrustAllCerts this means the app has zero transport security. No certificate pinning is configured anywhere in this file. Zero pinset elements. Finding 2: ChangeHostActivity exported with deep link. File: AndroidManifest.xml line 606 ChangeHostActivity is exported="true" with an intent filter for kyle://longbridge_changeHost Any app on the device can invoke this deep link. It opens the host configuration screen. The screen that sets which server the app talks to. A malicious app sends one intent. MEXC now talks to the attacker's server. No user interaction required. Finding 3: DebugActivity exported with no protection. File: AndroidManifest.xml DebugActivity: exported="true". No permission required. Any app can launch it. Adjacent activities (reachable from DebugActivity): - NetTraceActivity (network tracing) - DataMockActivity (data mocking) - RainbowActivity These are development tools. In a production APK. Launchable by any app on the device. Finding 4: GreySwtichActivity exported with deep link. Yes. "Swtich." They misspelled "Switch" in their own class name. kyle://longbridge_grey opens the feature flag toggle screen. Any app can flip feature flags in the MEXC app via this deep link. That's 3 exported debug/admin activities accessible to any app: ChangeHost. Debug. GreySwitch. 34 exported components total. Finding 5: eval() in TradingView WebView. File: assets/com/tradingview/lightweightcharts/scripts/plugins/eval-plugin/main.js line 4: return new Function(return(${evalParams.f}))() new Function() is eval(). It executes any string as JavaScript. This runs inside a WebView that loads TradingView charts. Combined with disabled certificate pinning: an attacker on the network injects JavaScript into the chart page. The eval plugin executes it. Finding 6: Hardcoded credentials. From res/values/strings.xml: Google API Key: AIzaSmefaihideforsecurityr_5gk Firebase Project: mmefaihideforsecurity82 GCM Sender: 4mefaihideforsecurity64 Google App ID: 1:40mefaihideforsecurity2f5bfd Storage Bucket: mexmefaihideforsecurityt.com From AndroidManifest.xml: Google OAuth Client ID: 643629201101-la8f2t1mefaihideforsecurity4 All extracted from the production APK. All active. Finding 7 CVV sent via email. The OTC Mini Program HTML bundled in the APK contains these locale strings: "The system will send the card details including the CVV to your email address" "The card info including password CVV and validity date will be sent to your registration email" CVV password expiry date via email. PCI-DSS Requirement 3.2 prohibits storing CVV after authorization. Sending it via email stores it in mail servers indefinitely. All of this in one app: TrustAllCerts: accepts any certificate (MITM trivial) cleartextTrafficPermitted: HTTP allowed globally ChangeHostActivity: any app redirects MEXC to malicious server DebugActivity: development tools in production GreySwtichActivity: feature flags togglable via deep link eval() plugin: arbitrary code execution in WebView 6 hardcoded API keys and credentials CVV transmission via email in OTC flow This is a financial app handling billions in user assets. Verify it yourself 1. Download MEXC APK from APKPure or APKMirror 2. Run: apktool d mexc.apk -o mexc-decompiled 3. Check TrustAllCerts: grep -r "checkServerTrusted" smali/ and look for return-void 4. Check network config: cat res/xml/network_security_config.xml 5. Count exported: grep -c 'exported="true"' AndroidManifest.xml 6. Find debug: grep "DebugActivity|ChangeHost|GreySwtich" AndroidManifest.xml 7. Find credentials: grep "google_api_key|google_app_id" res/values/strings.xml Everything is in the APK. Download it. Decompile it. See it.

“The Man in the Middle” There were two giants who lived on opposite sides of a great valley. One called himself The Right. The other called herself The Left. They were powerful; loud, certain, and always convinced they were the ones holding the world together. The Right stood firm, feet planted deep in the ground. “Stability is strength,” he would say. “Tradition is truth.” The Left moved constantly, always reaching forward. “Change is survival,” she would say. “Progress is justice.” At first, the distance between them was small. They could still hear each other. Still argue. Still laugh, sometimes. But over time… something changed. The Right took a step further right. The Left took a step further left. And then another. And another. Until the valley between them became so wide that they could no longer hear words - only echoes. And those echoes twisted everything. One day, a third figure appeared. Not above them. Not below them. But directly between them. He didn’t shout. He didn’t pick a side. He simply stood… in the middle. The Right scoffed. “You stand for nothing.” The Left laughed. “You’re in the way of progress.” But the man in the middle didn’t move. Instead, he did something neither of them expected - He reached out both hands. One toward the Right. One toward the Left. At first, neither took it. But something strange began to happen. Every time the Right pulled too far… the man resisted. Every time the Left pushed too far… the man pushed back. Not to win. Not to dominate. But to balance. “You are not enemies,” the man finally said. “You are forces.” “One of you preserves.” “One of you transforms.” “But without balance… both of you destroy.” The valley had not been created by disagreement. It had been created by imbalance. Slowly… reluctantly… The giants took a step inward. Not because they agreed. But because something felt… stable again. And that’s when the man in the middle spoke one last time: “A system that only moves left… collapses.” “A system that only moves right… stagnates.” “A system that survives… learns to center itself.” #maninthemiddle #WelcometotheCipherracket #Cipherracket

“The Man in the Middle” There were two giants who lived on opposite sides of a great valley. One called himself The Right. The other called herself The Left. They were powerful; loud, certain, and always convinced they were the ones holding the world together. The Right stood firm, feet planted deep in the ground. “Stability is strength,” he would say. “Tradition is truth.” The Left moved constantly, always reaching forward. “Change is survival,” she would say. “Progress is justice.” At first, the distance between them was small. They could still hear each other. Still argue. Still laugh, sometimes. But over time… something changed. The Right took a step further right. The Left took a step further left. And then another. And another. Until the valley between them became so wide that they could no longer hear words; only echoes. And those echoes twisted everything. One day, a third figure appeared. Not above them. Not below them. But directly between them. He didn’t shout. He didn’t pick a side. He simply stood… in the middle. The Right scoffed. “You stand for nothing.” The Left laughed. “You’re in the way of progress.” But the man in the middle didn’t move. Instead, he did something neither of them expected; He reached out both hands. One toward the Right. One toward the Left. At first, neither took it. But something strange began to happen. Every time the Right pulled too far… the man resisted. Every time the Left pushed too far… the man pushed back. Not to win. Not to dominate. But to balance. “You are not enemies,” the man finally said. “You are forces.” “One of you preserves.” “One of you transforms.” “But without balance… both of you destroy.” The valley had not been created by disagreement. It had been created by imbalance. Slowly… reluctantly… The giants took a step inward. Not because they agreed. But because something felt… stable again. And that’s when the man in the middle spoke one last time: “A system that only moves left… collapses.” “A system that only moves right… stagnates.” “A system that survives… learns to center itself.” #ManintheMiddle #WelcometotheCipherracket #Cipherracket

Crypto/Ai/Tokenize Constitution for WeThePeople protect us from unnecessary, unwanted ManInTheMiddle! Be Our own bank! Stand firm!

I’m so proud of you man You did it Man Hard Work & Dedication & Discipline I’m thankful for the 4 years you gave me #MANINTHEMIDDLE 🐐

💀 Si alguien se mete “en medio” de tu conexión… no es cupido, es un #Ciberdelincuente. Protégete y mantén tu conexión blindada 🔐Conoce más sobre los #Ciberataques a través de nuestras redes sociales. #ManInTheMiddle #TotalCyberSec #Ciberseguridad

🔍 ¿Con quién estás compartiendo tu información? 🧠 La seguridad digital comienza con hábitos informados. Conoce más sobre estos ataques silenciosos y cómo prevenirlos. #ManInTheMiddle #SeguridadDigital #Ciberseguridad #MitM #ProtegeTuInformación

Neither can I!! #maninthemiddle #whistle

#ManInTheMiddle ❤️❤️❤️

Entendimos cómo prevenir double-spend sin romper la privacidad y por qué las denominaciones en potencias de 2 son geniales Realizamos test real con testnut.cashu.space y aprendimos sobre firmas p2pk asegurando que el destinatario cobre resolviendo el ataque maninthemiddle👇

🔒 6 ภัยไซเบอร์ อันตรายกว่าที่คิด! ศูนย์เฝ้าระวังการละเมิดข้อมูลส่วนบุคคลเตือน! โลกออนไลน์ไม่ได้มีแค่แก๊งคอลเซ็นเตอร์ แต่ยังเต็มไปด้วยกลยุทธ์แฮกเกอร์ที่ซับซ้อน รู้ทันไว้ ป้องกันตัวได้ทัน! 💻 1. มัลแวร์ (Malware) ไวรัส, เวิร์ม, โทรจัน, สปายแวร์, แรนซัมแวร์ — โปรแกรมอันตรายที่แฝงตัวเพื่อขโมยข้อมูลหรือทำลายระบบ 🕵️‍♂️ 2. Man-in-the-Middle Attack แฮกเกอร์แอบดักข้อมูลระหว่างคุณกับเว็บไซต์ เป้าหมายหลักคือข้อมูลสำคัญ เช่น รหัสผ่านและข้อมูลธนาคาร 🎣 3. ฟิชชิ่ง (Phishing) หลอกลวงด้วยจิตวิทยา ผ่านอีเมล/ข้อความปลอมที่ดูน่าเชื่อถือ หลอกให้คลิกหรือกรอกข้อมูลสำคัญ 🌐 4. DDoS Attack ถล่มเว็บไซต์ให้ล่มด้วยทราฟิกมหาศาลจาก Botnet เป้าหมายคือทำให้ระบบใช้งานไม่ได้ 👤 5. Insider Threat ภัยจาก “คนใน” องค์กร ที่อาจใช้สิทธิ์เข้าถึงระบบก่อความเสียหาย ทั้งโดยตั้งใจและไม่ตั้งใจ 🧠 6. แรนซัมแวร์ (Ransomware) จับข้อมูลเป็นตัวประกัน เรียกค่าไถ่เพื่อแลกกับการคืนไฟล์ วิธีป้องกันดีที่สุดคือ สำรองข้อมูล (Backup) ไว้เสมอ 📌 ทั้งบุคคลทั่วไปและองค์กรต้อง อัปเดตระบบความปลอดภัย และ สร้างความตระหนักรู้ อยู่เสมอ #ภัยไซเบอร์ #รู้ทันแฮกเกอร์ #มัลแวร์ #แรนซัมแวร์ #ฟิชชิ่ง #ManInTheMiddle #DDoS #ข้อมูลส่วนบุคคล #CyberSecurity #PDPA #ศูนย์เฝ้าระวังการละเมิดข้อมูลส่วนบุคคล

Someone intercepting your private chats and data? That’s not a glitch. That’s a Man-in-the-Middle attack. Stay alert. Stay secure. #Maninthemiddle #TFGBV #ShieldMaidens #DigitalSafety

Du kannst von ausgehen das Starlink von der NSA überwacht wird. Wie alle Funkverbindung kann Starlink auch von maninthemiddle abgefangen werden.

#SkyEcc #Encrochat #Deutschland #Schweiz #Illegal #Hack #ManInTheMiddle linkedin.com/posts/pablob4_i…

stream man in the middle !! #arthurhill #maninthemiddle

I could be wrong but is there a new song out????? #maninthemiddle

Selective missed references, while Elon says truth seeking.. Is the maninthemiddle wrecking elon's work or is he compromised?