My personal theory is, they want the chaos it will cause (notice how gmail never linked the domains from text including . zip?), They want to create a problem they can then sell the solution to. People are going to want chromes site detection for malicious sites that goes outside of just https cert checking even more now. As well as mistrusting movs for sharing videos, and zips for sharing folders, thus leading to higher youtube and google drive usage...
@@lightningblaze6449 yep u guessed it. It probably just opens up possibilities for big companies to create blockware against this stuff to sell at high prices
@@NoTextToSpeech please keep doing these cybersecurity videos! i had no idea about the new tld’s and didn’t know urls could be exploited with the username:password thing. your videos are really engaging and easy to digest so imo they’re great for educating people about online safety
As a note, Firefox has an additional protection against this. If you actually try to go the site with the username thing, it'll pop up a warning saying is this the site you really want to go to.
Not sure how Google didn't think this through. They're one of the largest companies in the world, and they can't even afford to consider that this could happen.
And you wanna know the worst part? Well, apparently this concern was actually brought up, but they decided "naaaah it's fiiiine having just one more tld that no good website would probably use anyway because it's so stupid is deeeefinately worth opening the floodgates for these scams"
so did google just say that they want to make mov and zip files go extinct like the com files they were talking about? Google's old motto of "Don't Be Evil" definitely seems like something they left it the past.
@@Mathman2028 they probably have a hundred different versions of zip and mov many softwares use different versions of zip to store their own things, so you can probably find some random extension that opens up with 7zip
Heard about the .zip URLs, glad to see you're spreading awareness about this. Hopefully browsers or something will have a popup letting people know it MIGHT be suspicious.
If you'd spend your time actually watching the video instead of writing low-quality commands for absolutely no *ucking reason you'd know that discord actually prevents this scam from happening on their app
@@quinacon Pretty sure hes talking about the new discord username system or any other bad updates discord has made, not that discord is letting the .zip thing work as links
@@12a6bobo yea, seriously discord has been making REALLY bad decisions recently and even in the video NTTS said he doesn’t know if this was before or after the .zip came
shoutout to the people who bought some of the domains to warn people about these scams and prevent scammers from using them. but they shouldn't have had to do that to begin with, why the fuck did google think this was a good idea 💀
"a .txt URL is for text-based platforms, like ao3. If you want to let someone know that your website is dedicated to reading or writing text, use a .txt" "a .pdf URL is for viewing-based platforms, if you want someone to see but not edit, use a .pdf" "a .exe URL is for discussing plans. When you need to discuss or plan things over the internet, use a .exe"
Cause scammers are customers as well. I'm almost confident that this was created with malicious intent! Scammers will use dozens of URLs, which they have to pay for, and _who_ gets that money? *Google!*
0:48 - This is basically why I hate talking about Minecraft Bedrock Versions because there are so many numbers that it can look like a weird IP Address
Who the hell thought this was a good idea, and who the hell approved it? Did they not see the possibility of this? Utter idiocy and incompetence, I swear.
I'm just glad that SOME people are watching out for the monkey brain idiots by registering URL's that could be scams and making them into warnings instead.
@vonKarma1186 Yeah, but I'm not talking about people that know everything about computers or people that don't. I'm talking about the everyday person that clicks on random links that are VERY NOTICABLE in that they're a scam yet STILL clicks on it.
@vonKarma1186 I made the original comment saying that I'm glad there's people out there that protect those dumb enough to click the links even though they're really noticeable, because, believe it or not, there ARE people stupid enough to click on said links.
Fun fact: Firefox shows a "are you sure you want to log in with username ...? this may be an attempt to trick u" warning before visiting a url with url login
I hope they undo the new url domains, cause I really don't want to deal with this and I don't want to have to explain this to people who aren't the wiser when it comes to clicking stuff on the internet
I like how i initially started watching this channel to keep myself more aware of scam/spam, but now i'm watching to find funnier ways to troll my friends. Thank you No Text To Speech for giving me good ideas
One of the main reasons I watch your videos is to be updated with whats been going on. I certanly didn't knew about that "dot zip" and "dot mov" update on google, but I saw your video on my recommended and just ty. If i didn't knew this later on I would just get malware of that. Please continue making videos about this that, even if they aren't about discord. They are important to make because theres a big danger going around with a new method for scams. And thats all I got to say. Continue being an awesome youtuber and all the best. love ya too *kiss* *Kiss*
I am a somewhat techy guy (I've done coding here and there for fun), so I know how to properly decipher if a domain is gonna be what it says or a virus. But there are a lot of people that would fall for this. My little brother just got a pc recently and this seems like something he'd fall for trying to mod games or something. Not only did Google come up with the worst domains possible, but ICANN had let it pass as well.
Someone should sue ICANN for reckless endangerment of property. I mean, come on, it's only a matter of time before bad internet awareness in combination with these new filename-confused TLDs causes companies to start losing major amounts of profits.
Can't wait for this to backfire and lead to random accounts being terminated for no apparent reason on different platforms. A RUclipsr I watch once got strikes against their channel because they did the due diligence of linking to a mod they used in their playthrough of a game. YEARS LATER, that domain gets sniped and links to malware, and the RUclipsr is automatically in the firing line for linking dangerous content. This is almost certainly going to lead to random typos and discussions on file types being flagged.
google is really dumb as hell for literally adding the ".zip" plus with the @ thing the scam is even more harder to figure it out also google does not disappoint when it comes to Disappointing users
What do you mean? The original link is already malicious. Plus would a domain that had youtube in it be more trustworthy then just fortnitehacks? I think so, which is exactly why it doesnt show the youtube part of it.
@@erroristlagoon1130 at least I'm trying to help spread the existence of the app/software after watching ThioJoe mentioned it to block newly made sites and a recent video about the zip domains
If I had to guess, these changes are meant to make piracy seem more dangerous than it actually is. By making people scared of .zip and .mov links, less folks are likely to start pirating since these file types are most commonly used (.mov for pirated movies, .zip for pretty much everything else)
Every TLD has to be registered with ICANN. Any company who can prove they can afford and handle registry and requests can get a gTDL or generic top level domain
5:42 That existed for years... I tried to test the http login system (HTTP Basic Auth for the nerds) out using normal domains this way before but it turned out to work like you just showed.
This reminds me that I sent a Ticket to discord support to report a bug and they replied with: "Could you try to uninstall the application completely by removing and deleting Discord from your system."
Always leave it up to the largest multi-billion companies to make the internet a worse place because the ones in charge can't think five minutes ahead
Oh, they can. It's just that they keep looking down the best case timeline where everything goes perfectly and they make all the money.
If google makes this cheap, its gonna cause a lot of havoc
My personal theory is, they want the chaos it will cause (notice how gmail never linked the domains from text including . zip?), They want to create a problem they can then sell the solution to. People are going to want chromes site detection for malicious sites that goes outside of just https cert checking even more now. As well as mistrusting movs for sharing videos, and zips for sharing folders, thus leading to higher youtube and google drive usage...
no way kogasa tartara from the hit game touhou
@@lightningblaze6449 yep u guessed it. It probably just opens up possibilities for big companies to create blockware against this stuff to sell at high prices
If NTTs decide to make more videos that are not related to Discord, I wouldn't mind, this man takes the time to do very well done research.
+1 NTTS gave very solid examples of how they could be abused
Most common NTTS W
@@NoTextToSpeech please keep doing these cybersecurity videos! i had no idea about the new tld’s and didn’t know urls could be exploited with the username:password thing. your videos are really engaging and easy to digest so imo they’re great for educating people about online safety
Agreed. I only watch this channel because it's cybersecurity related so it's nice to see more cybersec related coverage.
i think this is the best idea ever. We definetly need a .exe domain
Sonic.exe
🤣🤣🤣
Don't give google any ideas
YouAreAnIdiot.exe
word.exe
These people who register these domains to prevent them from being taken by scammers are actually legends (even the rickrolls)
Chaotic good internet dudes being bros.
Specially* the rickrolls
Yeah but how many time they will put money on these domains? 🤷🏻♂️
@@corrompu98 tbh its very cheap and you only pay yearly at least here 😅
@@arcanep I mean, you talk as if he's going to preserve just one.
As a note, Firefox has an additional protection against this. If you actually try to go the site with the username thing, it'll pop up a warning saying is this the site you really want to go to.
Firefox > Chrome always, unless a site won't work and forces you to use Chromium.
@Deprecated Firefox is an actually great browser tho, I made the switch in January and haven't looked back
@Verm Fair enough if you had a bad experience with it, but for me it's been way better than Google ever was.
@vonKarma1186 I really only use Google now cuz my preferred art program doesn't work as well on Firefox
@@vermski what kind of add on are you even using that doesn't work on firefox lmao, big cap here
wouldnt be surprised if google did this on purpose to sell some sort of solution at a later point
Not sure how Google didn't think this through. They're one of the largest companies in the world, and they can't even afford to consider that this could happen.
Ah you see, being a big corporation means that they can afford to fuck you over, thats all it means at this point in society
The end user should be smarter
@@topshelf5032a good design has to take in consideration people from every age and every range of knowledge
@@topshelf5032 the slash is too sneaky to be detected
But think of all the money they'll make from the scammers (and security professionals trying to protect from scammers)!
It’s funny the fact that lots of companies make new features without (most of the time) thinking about if scammers can take advantages of them or not
They assume people aren't dumb
i bet they do, so they do it and then they sell their own “solution” to the problem they made
With big corporations like this, I think it's safe to assume malice before stupidity, since this had to go through *dozens* of people!
@D.R.M. Mefreji that's dumb of them
@@youlean Yes, agreed
And you wanna know the worst part? Well, apparently this concern was actually brought up, but they decided "naaaah it's fiiiine having just one more tld that no good website would probably use anyway because it's so stupid is deeeefinately worth opening the floodgates for these scams"
Gotta love it when No Text To Speech uploads! Google loves dissapointing people.
I agree
This is another reason why I left Google for Bing.
@@overshabby k
Don't you love it when giant corporations ruin themselves
Yes because they know theyre so big no can afford not to use it so they get away with everything
Ruin? You completely got this backwards my man, they are getting EVEN RICHER with this!
Yes I love it.zip
so did google just say that they want to make mov and zip files go extinct like the com files they were talking about? Google's old motto of "Don't Be Evil" definitely seems like something they left it the past.
No, they didn't.
Can't wait for google to drop their own versions of zip and mov
@@Mathman2028 they probably have a hundred different versions of zip and mov
many softwares use different versions of zip to store their own things, so you can probably find some random extension that opens up with 7zip
@@Mathman2028 you mean brotli and vp9?
@@AveryChowisn't vp9 a codec and not a file format
Heard about the .zip URLs, glad to see you're spreading awareness about this. Hopefully browsers or something will have a popup letting people know it MIGHT be suspicious.
Firefox always had that
Well guess who the most popular web browser is owned by, google. The ones who caused this whole thing in the first place
Fr.zip uwu.zip q.zip w.zip e.zip r.zip t.zip y.zip u.zip
2:28 YOU ARE PRONOUNCING IT CORRECTLY!!!!
CONGRATS!!!!
👍 😂😂😂
I love that people are actually sharing this all around, I have heard about this twice on ThioJoe's channel as well as twice on LTT channels
Google and discord, both never fail to disappoint 🙏
If you'd spend your time actually watching the video instead of writing low-quality commands for absolutely no *ucking reason you'd know that discord actually prevents this scam from happening on their app
@@quinacon I’m aware of it, still discord never fails to disappoint 😮
@@quinacon Pretty sure hes talking about the new discord username system or any other bad updates discord has made, not that discord is letting the .zip thing work as links
@@12a6bobo yea, seriously discord has been making REALLY bad decisions recently and even in the video NTTS said he doesn’t know if this was before or after the .zip came
@@12a6bobo I'm pretty sure he can't watch an 11 minutes video in 2 minutes so he just thought of something stupid to get likes
Damn, google is just devious at this point.
Fr
It gets a little... quirky at night
@@fallacy08_shrine pause
@@fallacy08_shrine proof?
@@fallacy08_shrine sussy google
shoutout to the people who bought some of the domains to warn people about these scams and prevent scammers from using them. but they shouldn't have had to do that to begin with, why the fuck did google think this was a good idea 💀
Thanks for bringing more attention to this. it's such a bad idea and I hope it gets changed
yooo spore pfp?
spore pfp = got my respect
childhood flashed before my eyes when i saw that spore pfp
Spore galactic adventures? Let’s go!
0:54 how tf did that keyboard smashing sync up so well
I wonder what Google, in its infinite wisdom, will add next. .txt? .pdf? .exe?
"a .txt URL is for text-based platforms, like ao3. If you want to let someone know that your website is dedicated to reading or writing text, use a .txt"
"a .pdf URL is for viewing-based platforms, if you want someone to see but not edit, use a .pdf"
"a .exe URL is for discussing plans. When you need to discuss or plan things over the internet, use a .exe"
Always the big multibillion dollars companies do this, whoever was incharge of this change didn't think if it was a bad decision.
Cause scammers are customers as well.
I'm almost confident that this was created with malicious intent! Scammers will use dozens of URLs, which they have to pay for, and _who_ gets that money? *Google!*
I wonder how Discord and Google CEOs aren't best buddies, they have some of the best ideas ever!
0:48 - This is basically why I hate talking about Minecraft Bedrock Versions because there are so many numbers that it can look like a weird IP Address
Who the hell thought this was a good idea, and who the hell approved it? Did they not see the possibility of this? Utter idiocy and incompetence, I swear.
I'm just glad that SOME people are watching out for the monkey brain idiots by registering URL's that could be scams and making them into warnings instead.
Dont blame the user bruh like if for some reason your cars companies decide to swap the brake with the gas then they are at fault
Google makes profit off both good Samaritans and cyber-criminals. This is what they want.
@@Sunzen44 If people are blind enough to click on random links then they deserve to be scammed.
@vonKarma1186 Yeah, but I'm not talking about people that know everything about computers or people that don't. I'm talking about the everyday person that clicks on random links that are VERY NOTICABLE in that they're a scam yet STILL clicks on it.
@vonKarma1186 I made the original comment saying that I'm glad there's people out there that protect those dumb enough to click the links even though they're really noticeable, because, believe it or not, there ARE people stupid enough to click on said links.
Great, now I have to make another internet safety Powerpoint for my grandma!
Fun fact: Firefox shows a "are you sure you want to log in with username ...? this may be an attempt to trick u" warning before visiting a url with url login
I hope they undo the new url domains, cause I really don't want to deal with this and I don't want to have to explain this to people who aren't the wiser when it comes to clicking stuff on the internet
Undo domains is a thing, you don't want to do. What is possible, to don't allow new ones
@@schwingedeshaehers TBF it's at the domain registries' hands, although it might cause some chaos...
@@erikkonstas to disallow new addresses yes, but close everything could be hard
4:44 But what are they gonna do if steam 2 goes down too ? Valve doesn't know how to count to 3 !
they use v2.1!
But what if 2.1 and 2.2 get taken down?
As Andy said Valve doesn't know how to count to 3
Then: Google chrome, the safest way to browse the internet
Now: Google chrome, a scammers dream
right, i use microsoft edge
@@liqznaa id rather get scammed then use microsoft edge😂
Firefox is better than Chrome
@@Bleyk and no one use it for some reason
@@bot-h2h almost everyone used that, but when chrome came, everyone switched because " *google* chrome"
I like how i initially started watching this channel to keep myself more aware of scam/spam, but now i'm watching to find funnier ways to troll my friends. Thank you No Text To Speech for giving me good ideas
Love the madlad who turned the attachment into a rickroll
One of the main reasons I watch your videos is to be updated with whats been going on. I certanly didn't knew about that "dot zip" and "dot mov" update on google, but I saw your video on my recommended and just ty. If i didn't knew this later on I would just get malware of that. Please continue making videos about this that, even if they aren't about discord. They are important to make because theres a big danger going around with a new method for scams.
And thats all I got to say. Continue being an awesome youtuber and all the best.
love ya too *kiss* *Kiss*
Gotta love it when No Text To Speech uploads ❤❤
0:22 "Files that you likely have on your computer"
Google never fails to disappoint 🔥
I am a somewhat techy guy (I've done coding here and there for fun), so I know how to properly decipher if a domain is gonna be what it says or a virus. But there are a lot of people that would fall for this. My little brother just got a pc recently and this seems like something he'd fall for trying to mod games or something. Not only did Google come up with the worst domains possible, but ICANN had let it pass as well.
0:24 uhhhh... nice files you have
My dad had those flies
@@BlobyTheBlob15even fortnite rule34?
@@VilactDoesntSayShitYourselfNowwe don’t talk about that
thank you from the security community for making this video
I'm glad I watch you, it's great to learn something new and also stay safe.
i find it funny how the biggest companies tend to have the worst security, unlike smaller companies
Someone should sue ICANN for reckless endangerment of property. I mean, come on, it's only a matter of time before bad internet awareness in combination with these new filename-confused TLDs causes companies to start losing major amounts of profits.
Can't wait for this to backfire and lead to random accounts being terminated for no apparent reason on different platforms.
A RUclipsr I watch once got strikes against their channel because they did the due diligence of linking to a mod they used in their playthrough of a game. YEARS LATER, that domain gets sniped and links to malware, and the RUclipsr is automatically in the firing line for linking dangerous content.
This is almost certainly going to lead to random typos and discussions on file types being flagged.
1:42 your WHAT proposal?
Google & Discord are partners when it comes to disappointing
google is really dumb as hell for literally adding the ".zip" plus with the @ thing the scam is even more harder to figure it out
also google does not disappoint when it comes to Disappointing users
just tested it, opera gx (yes the 739th chromium based browser) does have the nice little feature of subdomain shading that firefox has
9:32 Google seriously just said "THEY DID IT FIRST" like a 3 year old getting told off for stealing a cookie.
People usually watch NTTS for cyber security information and discord news. I watch NTTS for the kisses.
We are not the same.
he be kissing me
I watch him because
5:38 It was definitely before, I tried it the day the .zip domain released and it shortened
Yeah same. There's no way Discord would be that fast to respond.
@@natec1 Yup
so the solution is to use your group policy editor to block all zip domains and you'll be just fine
This does not work if your Windows license is not Professional/Enterprise. I doubt Home/OEM license have policy editor.
@@RyuSei544732 linux user:
@@bot-h2h Not all of us are damn tech geniuses okay
I look at a laptop wrong and it dies
@@RyuSei544732 it's not like you can't just upgrade your home to pro cheaply lol
@@_lun4r_ "Cheaply"... you know that money feeds some people for weeks right...?
The moment I heard of the new zip domain, one thing immediately came to my mind. Fake links.
I can see Web browsers give anti-phishing warnings on “.zip” domains, or even treat all .zip websites as phishing websites.
6:20 polish domain xD
Polska Gurom!
Polska dotarła
We need more rickroll sites
Imagine someone don’t knowing this guy trying to scam him😂😂…
Wait that can be a very funny video😐
Discord actually converting the links to the malicious one for you? Wow i would of never expected that, good job on discord
What do you mean? The original link is already malicious. Plus would a domain that had youtube in it be more trustworthy then just fortnitehacks? I think so, which is exactly why it doesnt show the youtube part of it.
at least you can use nextdns to block all zip domains to avoid getting tricked
Except for everyone that doesnt know that nextdns even exists
@@erroristlagoon1130 at least I'm trying to help spread the existence of the app/software after watching ThioJoe mentioned it to block newly made sites and a recent video about the zip domains
Take a minute to turn on "ask where to save each file" as this will save your butt when a website tries to auto download
how long will it take for a google employee to fall for a .zip domain scam
Okay literally HOW can you make such bad decision 😭
money
I appreciate all the good people out there who claim the dangerous domains to educate people about online safety
10:18 so wouldn't .tie and .move be better solutions then....
As a "Computer hacker man", I can confirm you are pronouncing Kubernetes correctly.
Google made Scamming Easier!
If I had to guess, these changes are meant to make piracy seem more dangerous than it actually is. By making people scared of .zip and .mov links, less folks are likely to start pirating since these file types are most commonly used (.mov for pirated movies, .zip for pretty much everything else)
Kinda makes sense as twisted as it is
Cool, now we can teach then about torrents.
@@TOTU inb4 .torrent becomes a TLD
@@MasicoreLord then huzzah magnets!
bruh what
These cyber criminals are probably like “NOOOO, You ruined my plans to take everyone’s accounts!”
Every TLD has to be registered with ICANN. Any company who can prove they can afford and handle registry and requests can get a gTDL or generic top level domain
1:47 tweeter 💀
my favorite social media website, tweeder
Google is destroying privacy!!! WTF
NoTextToSpeech uploaded a new video 4 minutes ago? Time to get the top comment.
potato
Congrats on 400k!
you pronounced kubernettes correct
5:42 That existed for years... I tried to test the http login system (HTTP Basic Auth for the nerds) out using normal domains this way before but it turned out to work like you just showed.
This reminds me that I sent a Ticket to discord support to report a bug and they replied with: "Could you try to uninstall the application completely by removing and deleting Discord from your system."
u rlly love me? 🥺❤
yes
No 🥺❤
@@blahaj. ur lying he said he loved me 😭
ntts plz adopt me
"I said i love you twice because i double love you" is so wholesome omg!!
discord saves you, but also throws you,
You can place the link in a 'code block' and it will not format, like this:
```
Link here
```
People also can't click it then...
1:38 is that a reference to the veryfunny trojan where it says on the first msgbox "Fun Fun Fun - A very funny thing is happening"
Also you cant have a secure domain. The security depends on the server, SSL and other stuff to say a secure domain makes no sense
The r . zip somehow turned into a Heavy and I realize the malware has turned into the spyware, yum yum yum
Manifest v3 then adblock detection and now the shittiest top level domains. Nice streak Google!
I like how ntts's best recommendation is an already watched video about the death of AI girlfriends.
A naked man fears no pickpocket.
Unless
proof?
I've been watching a whole bunch of these. And I absolutely adore the outro.
the fact i got a google chrome ad before this 😭
I got a google chrome ad for this
I mean, u kidding me Google?
Remember that past Google motto: do no evil? Now it’s different. I think this explains everything
2:23 Oh my gosh man the internet is doomed
Thank you for the explanation at 7:05, I wasn't completely sure how sub-domains work before this - so will definitely be more vigilant.
i love how i got a google ad on this
time to become ClownXiao
I got a google chrome ad talking about how chrome protects against malware
0:25 Wow they added the Skyline GTR-R34 in Fortnite, that's sooo cool 😃😃😃😃
Google really got a content update
this was almost guarunteed to be designed to screw over pirates specifically
10:20 Google adopts "Nama adalah Doa" to next level 😂