When you send a message with the #Bolo app, it is checking if your contact is online with this request. The endpoint is taking the "contact userId" (the 1st black rectangle in the picture)pic.twitter.com/lEqch4vpFa
French security researcher. Worst nightmare of Oneplus, Wiko, UIDAI, Kimbho and others. Not completely schizophrenic. Not related to USANetwork. DMs open.
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Add this Tweet to your website by copying the code below. Learn more
Add this video to your website by copying the code below. Learn more
By embedding Twitter content in your website or app, you are agreeing to the Twitter Developer Agreement and Developer Policy.
| Country | Code | For customers of |
|---|---|---|
| United States | 40404 | (any) |
| Canada | 21212 | (any) |
| United Kingdom | 86444 | Vodafone, Orange, 3, O2 |
| Brazil | 40404 | Nextel, TIM |
| Haiti | 40404 | Digicel, Voila |
| Ireland | 51210 | Vodafone, O2 |
| India | 53000 | Bharti Airtel, Videocon, Reliance |
| Indonesia | 89887 | AXIS, 3, Telkomsel, Indosat, XL Axiata |
| Italy | 4880804 | Wind |
| 3424486444 | Vodafone | |
| » See SMS short codes for other countries | ||
This timeline is where you’ll spend most of your time, getting instant updates about what matters to you.
Hover over the profile pic and click the Following button to unfollow any account.
When you see a Tweet you love, tap the heart — it lets the person who wrote it know you shared the love.
The fastest way to share someone else’s Tweet with your followers is with a Retweet. Tap the icon to send it instantly.
Add your thoughts about any Tweet with a Reply. Find a topic you’re passionate about, and jump right in.
Get instant insight into what people are talking about now.
Follow more accounts to get instant updates about topics you care about.
See the latest conversations about any topic instantly.
Catch up instantly on the best stories happening as they unfold.
When you send a message with the #Bolo app, it is checking if your contact is online with this request. The endpoint is taking the "contact userId" (the 1st black rectangle in the picture)pic.twitter.com/lEqch4vpFa
If the request is successful, you will receive this response with 2 info: - If the user is online - Last active time Let's try to have the status of someone which is not my contact!pic.twitter.com/Zlz6JjwYDS
In this other request, the app is putting your phone number in the "contacts" parameter. If the request is successful you will receive a response with your userId.pic.twitter.com/euB3xCcXjM
Magic time: 1) In the previous request, replace the "contacts" parameter by the phone number of someone which has a Bolo account 2) In the response, you will receive his userId 3) Use this userId in the 1st request I mentioned in the thread
Even if you don't have it on your contact list you will receive his online status and last active time. Not good for a so called "secure" chat app, nah? What do you think @KamalAditi?
That’s a shocker. You can do better than that. Wondering why whatsApp has the same security flaw, checkout this screenshot from whatsApp. This is an unknown number and I can see his status, omgpic.twitter.com/0pMt0VN9JA
You have some issue to take a screenshot on your iPhone lol... For info, you can see his status because your “test” phone is in your contact...
Find me a way to get the status of an unknown number PROGRAMATICALLY on WhatsApp and after we can continue the discussion.
I don’t need to be a PROGRAMMER to see whatsapp status. Why would I write a hacking script for something I can do in simple 2 steps. Looking for something interesting.
The issue is if you can do programmatically, you can extract large list of data continuously anf monitor list of unknown ph number. With whatsapp you have to add each number and check manually. Are you saying both are at same risk level?
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.