Fun fact, the dev also has a repo which grabs your token and can terminate your account. So it’s not a traditional token logger but it still doesn’t look very good 😵💫
Honestly, from all points you made in the video, the 4th point should've been the first, and the first point sounds more like "why would you use this protection method when it doesn't cover everything else?", it's kind of a dumb argument. Of course, a tool that does one thing isn't perfect, but if it is the only one that does that specific job, then it should suffice and be worth using it, especially for digital safety. Obv, this "worthiness" of use shouldn't be greater than plain old cautiousness; my immediate thought when seeing this program was "damn, people really be running this crap without even checking if it's actually a disguised token grabber lmao" as it reminded me of those game hack tools that you'd downlosd and there's a bunch of "hacks" (like godmode) that were filled to the brim with malware. Weariness is always the key, but disregarding what could be a really useful tool just because it isn't a magical swiss-knife of digital protection is unwise at best.
I can understand how you can be against using a "random software", but I don't understand why you would share a statement that is completely baseless. I would be glad to reply to any "proof" that I made a token logger. -DTP dev Edit : the original message got edited ...
People don't realise that no matter how many steps you take to not get scammed/hacked, there is no way to circumvent being an idiot on the internet, people who are doing this stuff aren't dumb, they often times know how to get around these things, but they can't get around you not buying into whatever scam they're running.
Yeah it really can't be stressed enough that knowledge is the most effective thing that can protect you from scams like these, as well as being cautious about everything that you come across on the internet. I wouldn't say to not use these tools entirely though, they do provide some level of protection in case you had a bit of a brain fart or someone else does something stupid on your machine, just as long as you don't feel too comfortable and has done sufficient research about the specific software.
@@VaultCord You'd need a lot more than that here (alt account + Wireshark at least), plus there could be a "payload" that waits a few days before it attacks, playing the long con...
This software doesn't compromise in anyway, it just stop token grabbers, it isn't supposed to Stop every goddamn hack, it's to stop token grabbers specificly, it's better to stop some token grabbers than stoping none.
Yeah, NTTS usually has banger videos but this one is off by a mile. Not to mention he didn’t research the last part thoroughly enough. The “bypass” does turn off the protector but it doesn’t actually grab the token which is still encrypted.
"Don't use "Discord Token Protector", cuz it does not protect your browser and/or E-Mail".... ... It the same thing to say: "Do not use any antivirus software, it can't save you from robber with gun"
in my opinion this video is video is INCREDIBLY hypothetical and very stupid, you could've just explained how it works and what to understand when using it and to BE MORE AWARE, instead of, you know, literally destroying this random developer's project, this project is open source and discord doesnt care enough to encrypt tokens, the guy could make this a whole lot better if this was given in a criticism approach instead of trying to ruin the entire project.. this is NOT cool
As a person who doesn't have a good communication skills I find it's useful to not trust and talk back to anyone because I will have anxiety immediately lol
The safest you can be on discord is mainly having single digit amounts of Friends that can contact you in other platforms. That way if any of you get their account breached, you or they can just hop onto a different site to tell the situation and keep them aware that the account is now a malicious scam and isn't a friend anymore.
that is more of a contingency plan, definitely not "the safest" thing you could do. If someone else had their discord breached, they most likely already know, it's definitely better not to get breached in the first place.
The main thing I'd add to the "how to stay safe" thing is to use multi factor on more stuff. In the example of the code grabbing your email credentials, that wont do much if the email is also secured via 2fa. Assuming those can't also be exploited via token reuse. There's a lot of "But why don't we just..." kinda thoughts running through my head on this topic, but Discord is a multi-platform bit of software and so it can't "just use" some extra security provided by the OS as it wont be there on others. Or possibly allowed by the Browser if you're a web user. And then if the feature gets retired then we're all boned anyway. Basically to stay safe, use your noggin, don't reuse passwords or PIN numbers, use disposable accounts untrustworthy or single-use websites (some game mod sites for example), set up alternate contact methods for a trusted couple of folks for emergencies (Verification if one of you is suddenly sus for example), and know what security tools are available to you on your computer. (Like Windows Sandbox)
2FA isn't perfect, although you're right - it's definitely significantly more difficult to break into an account that has 2FA enabled. I think the other takeaway from this is "just because you read it on the Internet does not mean it's true". There's probably no tasteful way to say this, but a lot of these scams work because they can prey on people's ignorance of how the system works. They work because people are willing to accept some things on face value without checking. So even if you trust someone, always be at least a little skeptical about what you're told - there are ways to find out if you take the time.
The problem with your argument against it is that the same argument can be used for 2FA. Why use 2FA if you can just grab someone's token and get around it? Assuming the software itself isn't malicious, it's not that big of a deal to use it. Maybe it will stop some token grabbers, which is better than stopping none of them. And if people really wanted to get around the killprotector function in the example grabber, they can recompile the source with a different name for the exe and config folder. Sure it requires a bit of know-how but why not? The project creator could even include instructions on how to do this, if they haven't already.
But that just falls back into the "false sense of security" bit. Sure, some grabbers will get spotted and disabled, but not all of them, so at the end of the day you're still pretty much just as vulnerable in the beginning than you were without it. You don't exactly know what kind of token grabber you'll run into at that very moment. If anything, this video more-so teaches people to stop instantly giving 100% trust to literally anyone they meet online. Trust should be something obtained through time and effort and not given up so easily to the first person that dangles the promise of a shiny thing in front of you. No, not the actual shiny thing, but the PROMISE of it.
@@Stellar-Jay The same problem can exist with 2fa too. 2fa can also give a false sense of security. This entire video gave me anti-vaxxer vibes. A vaccine does not make you immune to a disease, it only increases your chances against getting the disease, and that does not mean you would call the vaccine harmful.
@@bitmap4838 Except I wasn't arguing for 2FA either. If you read my last point, you can come to the conclusion you don't need 2FA either. Everyone should just learn to practice a healthy amount of distrust towards their fellow man, especially on the internet, where a good chunk of people are practicing predatory behavior in the hopes of making a quick buck or having a laugh. Also I would like to point out that a vaccine does neither of those things. A vaccine specifically are dead virus cells that are injected into your body so that your white blood cells have target practice to know how to deal with them when they're alive and more of a threat. So there is no chance increase or decrease of getting a disease, you will get the disease, it just may not rock your body as hard as it would if your cells didn't have the knowledge beforehand.
Okay, so this video seems like a joke to me... it has to be... Regardless of if it actually works good or not, it's an added security-layer to your discord-account... now, should we all disable our discord-2fa too? because it doesn't protect us from other non-discord scams either.
Great advice in the end there. A month or so ago I got a friend request from a random person and a conversation starter. First I made sure there were no way a friend request or answering a question could get me hacked. Next I declined anything they tried to promote (artwork for my discord pfp) and then seiced contact. All of this was because I was sceptical. The server they found me on was one I have never written in and their pfp really just screamed "DO NOT TRUST"
bro why u should have accepted the offer (artwork) usually it's some ai generated shit yk it's fun when they say it's not ai generated and proceeds to send a human with 6 fingers
@@lapotist0 tbh I did not want to bc either it would end up a scam or something not ment for minors. They had a pfp with some questionable things included. I would rather stay safe then sorry in the end
@@lpsfoxstar8454 basicly it was some animal, pretty sure it is some fictional one. They are on the beach and they only have one peice of clothing and that is a bra... that is the best that i can explain it
I'm currently at 2 min into the video and already have an problem with the first point. Just because it won't protect you on other scams, it don't mean it's useless and you shouldn't use it, it's still better to use it rather than not using it.
It provides effectively zero protection as token grabbing is almost never used as sole payload (normally paired with keyloger) while introducing additional third party failure points as the software itself could have security flaws that could lead to NEGATIVE impact on security. Aside unrealistic scenarios in does nothing
@@RuriYoshinova The fact it's open source is actually good here, like sure malicious parties can look at how it ticks and try to make measures specifically against it but this is assuming there is a flaw in security. ON THE OTHER HAND good faith actors can ALSO look into the code and detect those flaws to be fixed instead of exploited. Obscurity is NOT a good safety mechanism as you are just delaying the eventual breach instead of actually building up safeguards against it
@@electricz3045 And you are now ignoring the other side, you now have additional failure point in the system. The odds of this having a fault that's going to be exploited is much higher than malware that EXCLUSIVELY nabs your token
@@RuriYoshinovaI see that you have no idea how the program works. Do you think that putting a program open source means that you can bypass it ? If yes then you have no idea of what’s cryptography and environments. This program protects the Discord database by putting it in a secure environment that cannot be accessible from the outside, and encrypts it. In order for the grabber to access to it you would need to manually give administrator permissions to it. Now before spreading BS go verify what you say
Honestly, this video isn't needed. It's meant to protect your TOKEN, not your sensitive info in-general. And it never promises to do more than that. You just need the common sense a pigeon has to not fall for the most basic textbook phishing scams.
And it's also smarter to look into profile details and if it was created very recently and sending those suspicious dms, it is more likely be a spam bot
And this is why we don't use our browser's password manager Edit: To clear up confusion, I'm referring to when the video arcs off into how malicious software could steal emails and passwords from your browser
If you're saying this because of the fake Steam Login, or fake Discord Login, you don't understand how the password manager works. Those don't have the same URL as the real websites, so your browser won't autofill them. In that case, it's actually BETTER to use them, since it'd show you that somethings off.
Just gonna add: you are completely wrong. The password manager in your browser has as good, sometimes even better, security than a password manager, discounting security via a lower chance it will be targeted. What matters is how the passwords are stored and if you don't have to enter your password every time you open the application providing the password manager it is plain text + obfuscation. Firefox provides this feature (chromium no IIRC), so if your password manager doesn't have that function, it is worse than using the password manager built into your browser
@@minekpo1 If you download a malicious program, your passwords in your browser's password manager can easily be stolen since _passwords are stored in plain text locally_ on some browsers (like Chrome, used by billions of users). I believe Firefox will still encrypt your passwords on their servers using a "master password," but I don't know how secure the encryption method they use is.
@@VaultCord Yeah, my comment was a little confusing. I meant to reference when the video branches off a little into how malicious software can steal emails or passwords and use that to reset the password for your Discord account
There's this important quote about computer security. Once you let anyone run code on your computer, it ain't your computer anymore. Making your discord token harder to access after the fact is just putting a band-aid on a third degree burn lol
You literally have code running on your system at all times. Wtf ru talking bout, your OS alone is a bunch of code, let's not even mention the browser you're using, and I highly doubt you own both
It does lower your attack surface though, I don't see the problem as long as it's not malware itself and you understand it doesn't make you invincible. As much as not downloading random software is something I'd like to avoid, it's sort of required for Minecraft modding. One of the main types of tokens grabbed by gaming related viruses now is your discord token, so protecting it makes sense. Every time I install a modpack I'm installing 100's of pieces of software from random developers That being said, I probably won't use it because I'm not too concerned. Just thought I'd put out some reasons one might use it
Rather just enable windows ransomware protection. Add your browser and discord installation folders to the list of protected folders (and wherever could be sensitive information) and programs can't simply easily access them. You also will get a notification if a program tries to.
im glad the Internet has someone to inform others about scams and stuff like this but part of me missed old NTTS where you'd show off cool computer programs and customizations! It was neat ;3
@@shadybandit7 Clearly you don't understand then. This software, when you audit it yourself because it's open source and can check for yourself, just lowers your attack vectors of possible ways to get hacked. It won't hurt, and could just help add extra protection against grabbers that do use a basic method. Also that bypass is patched for a while now.
Eh... The program is clear that it only protects your token and nothing else. It isn't a magical security tool, and the creator knows this. Your average discord user probably shouldn't use this, but it still has its uses and is a very interesting project.
Oh come on @NoTextToSpeech, you could do better. You know, and stated, the software was open source, but then pretend like this doesn't matter when it comes to security aspects. Having, just like you told us, no good grasp of software development but then bashing such a well-made tool like that is just a limp cry for content. The author clarified everything on the repo, the "bypass" was fixed long ago and as long as you keep a good and clear idea of how the internet works, the token protector won't do any harm. This video was just... bad.
"You can't protect your browser data with this, so why protect Discord?" love your videos man, but these arguments stink. but hey, i work in cybersecurity, so maybe i'm biased on this
i mean lets assume the token protector is what it says. that still prevents one method of hacking. it just claimed to protect your token so saying its bad because there are many methods of scams seems like a slow news week kinda video.
1:40 "dosent protect you from alot of the super common hacking methods on discord" why did you say that? are you acoustic? the point is to protect your discord token not your bank account
most of the stuff was mentioned but i've experienced something called a discord server scam, someone assumed me being the best owner on discord and of course i got suspicious, they sent me a server and told me to verify but i got skeptical from the first ever entrance, most of the users were offline or deleted, online users weren't even doing anything and their names were all similar to eachother, the verification bot was 'mirai' and to verify they wanted to send me outside discord; where i'm going with this is that people can also get hacked without going to any links but js joining servers, once my sister joined the same server, she didn't click anything js was online and as an idiot, she didn't have 2FA set so she got hacked for a second there, but because of me being a 'smartass', i set 2FA to her and no one could get into her account no more, safest account security system on discord is 2FA, no matter if it's with phone or anything, js have it enabled and you'll never get hacked, of course if you're not a moron
After being hacked once and getting my account back after working with the hacker ((yeah I feel stupid but discord literally didn’t help)), I’ve come to never save my own passwords on my computer. I use a handy thing called a notepad that has my passwords written down, and multiple 2FA systems to make sure that only I’m resetting my information. It cannot be stressed enough that the best way to not get hacked is to make the process as difficult as possible, don’t keep your passwords saved to your browser, don’t click fishy links and sign in to a fishy site, and most importantly: *Don’t download random shit from strangers*
@@HackingStuffIDontKnow And please explain how you’re supposed to remember 50+ different unique passwords if you’re not supposed to write them down either. The whole point of my comment was stating that you should not give your information to fishy things, and that way you won’t be hacked. Hackers never go for something too difficult to obtain, they want it to be easy, having your passwords written down as opposed to saved to your browser makes it much harder for them to obtain it regardless as you do not openly save it to your files. Unless you’re openly giving your cookies away as your comment is implying, writing them down will work.
@@AimlessAvian1. You can write them down but my point is still valid 2. Running basically ANYTHING can log your cookies, just look at minecraft alt shops 3. They can still just log the cookies with anything, a minecraft client, fake token gen, fake anything that runs code
@@HackingStuffIDontKnow Points 2 and 3 are the same exact thing, and you arent even acknowledging what I said in the slightest with my first comment, which was that you shouldn’t be logging into fishy sites to begin with. Just because you visited a site, doesn’t mean you automatically forfeit your login credentials. You must be LOGGED into the site for it to remember your credentials with cookies. Just because they have your cookies doesn’t mean anything if you haven’t logged into that site yet. Next time you’re going to try to make a point, at least make sure that the point you’re making isn’t immediately debunked by literally what the person already stated.
@@HackingStuffIDontKnow And before you counter my point, please explain how cookies can store your login information if you haven’t logged into the site to begin with. Cookies are stored PER site, yes they could run a program to grab all the cookies but then again, that’s why you use multiple protection methods besides a password. If you don’t join random and fishy sites, and log into their equally fishy sites and give them YOUR information, it’s pretty difficult to be hacked. They can brute force it, but once more, just increase the security by making your passwords more difficult to crack into. 2FA, backup codes, location verification, etc.
Imagine complaining about an app that protects your discord TOKEN because it doesn't protect you from scanning QR codes... Other than that, yeah fair enough claims and advice.
You missed his point of mentioning that. He mentions that because it’s a very real limitation and it needs to be acknowledged. People will install anti-virus and think they’re invincible while that’s just not true. People may grab this “protection” and think it’s enough when it’s just not true either. They’ll put their guards down because they have a program that protects them.
5:42 that sure doesn’t look like a scam, and I’m sure little timmy will fall for it since google tells you “Hey kid you’re going to get reported to the police for doing this” as seen in the screenshot
This isn't a flaw in Discord's security, it's a flaw in everything's security. Token logging isn't specific to Discord, you can get token logged on anything you can log in to.
@@Hexcede yea but discord could block this by making it encrypted and make it a hard way to get the token so people can’t token log it would make it way safer
@@Acgpro1Aymir No they couldn't, that's not how encryption works. Not to mention Discord is using Electron which is chromium based. It's just a fancy browser with more direct access to your PC and hardware. It's not as if Discord is improperly storing your token. Your token is stored the same way as in Google Chrome or Firefox. If you think it's as easy as "just encrypt it" then every browser ever would "just encrypt it" and token logging wouldn't exist. But it does. Encryption works by using a bunch of math and stuff to put something behind a password. For Discord to encrypt it they'd also have to decrypt it. But that means they have to store the password somewhere. Which defeats the point of encryption. Otherwise you'd have to put in a password every time you open Discord. But that wouldn't even stop token loggers because Discord needs the token to be decrypted while in use, so they can just rip it out of your running Discord. This isn't Discord being stupid.
this is a sorta silly video, its not intended to stop all viruses only basic loggers that only get easier info to get like discord tokens. its still another layer of security that could help on ocassion!
I understand why you have an issue with this, but your arguments are simply baseless. You state that it only protects your token.. so you'd rather have no protection than a little bit of protection? Second, you talk about giving people a false sense of security.. github is a place for programmers and tech savvy people. I don't think random people would be able to figure out the site, but I'll give you the benefit of the doubt. What the developer should do, to remedy this, is to not pre-compile and just make the user compile (convert the code to an exe) it themselves. A random person wouldn't be able to figure out a compiler, I guarantee that. Third, you talk about how you can supposedly kill the protector process to bypass it. According to the developers response, this vulnerability was patched a long time ago. Do note though, that I have not tested this program and cannot guarantee that. And finally, you talk about how the best protection against scams is knowledge. I completely agree. But wouldn't you want a backup? I know for sure I would, even if it only protects one attack vector out of hundreds, its better than nothing is it not? Though, this is just my opinion, and I respect you may have a different opinion. I only have a problem when people make videos on stuff and provide baseless arguments that lower the reputation of a program that is otherwise useful, for no reason. A developer spent days of their own time making this for completely free. At least have some respect for their work will you?
This video gave me actual brain damage. First of all, for point 3, the source code is open-source. Second of all, point 1 is literally point 2. And third of all, point 2 is literally a skill issue. And point 4 I didn't even watch cause I clicked off and unsubbed before I could finish the video
*this comment is now invalid* reason: NTTS pinned comment IMO if you are an human being capable of proper knowledge it would be a nice addition to your security as long you are still warry of online threats
90% of the vid was about what it doesn't protect from. did he expect it to save your computer from everything? it claims to save your discord token, it saves your discord token, and that's it. it does what it says on the tin. only part 3 and the pinned comment had any weight tbh.
@@grindellionI'm very aware that it just protects your discord cookie and about his pinned comment I either didn't see it or I made this comment before he made his pinned comment
I like to pretend I played the game that the scamming EXE is. I'm like: "I like the part where you obtain the purple dildo to hit the flying monkeys with"
Nah, a more accurate analogy than the window analogy is that your house is 18 inches of reinforced concrete, your door is a blast door sealed with an electromagnetic lock, but the electrical box for that magnetic lock is outside of your house and isn't even locked and the power can just be switched off
I think it is a good tool to use. But it requires common sense as well. Like not clicking random links in dms it does require a bit of modification though like setting the config to read only once its set up as it would prevent modification. It is a safety net. As a just in case. The number 1 protection is still stuff you yourself can do. Like not clicking random links. Anything asking for a qr code is suspicious. And so on.
Considering the reasons NTTS gave in the video I'd have said it's not useful at all and only adding a potential threat into your system, the pinned comment only adds credence to the potential threat thought too, same dev apparently created a token stealer that bypassed his own token protector. Never trust things like this when in reality common sense is all the defense you need There's the argument that you could compile the code yourself with a different name and config location so a token stealer couldn't just find the process/files and bypass/modify anything, but if you're knowledgable enough to do that you're probably smart enough to not need a token protector in the first place
@@xosui5673 Yeah pretty crazy, I fully expected to see another video in a week about how the "Protector" got an update to make it malicious but here we are lol
i got a scam from a guy claiming to make digital art. was curious but also new it was fishy at the same time. used ai generated art with a fake watermark to try to convise me into buying it. ended up having fun trolling him in the end, fun times
This is a pretty weak argument, its a token protector, not a "we block all websites and discord server" protector. You SHOULD use this, as any software you download could be a token grabber, installing this is making yourself more secure, and its really sad to see you discourage people from making themselfs more secure over quote "security issues" which have nothing to do what the tool is actually designed for. And yes, they should fix where malicious software can just edit the config file and turn it off
Yeah honestly it seems like hes just run out of ideas so he made some bogus video about a security issue when the token protector is actually fine and does nothing to worsen your security at all.
100% with you, the research he did on this video was also a solid 0/10, even the bypass he mentioned isn't one as explained by the repo owner OVER A YEAR AGO in issue #60
Using this allocates resources on your computer to 'protect' against *one* of many malware payloads. Not blindly running software that could have access to the token (anything on Windows, can be easily trolled on Linux) is a much simpler, easier and safer alternative.
Actually ntts, the most powerful tool against discord scams is yourself, remember fortnite once said "Epic will NEVER ask for your password" preach kings and queens
I'm so glad I'm an adult now with so much knowledge on cybersecurity. The Internet has become more dangerous over the years and I'm pretty sure my child self would've actually gotten scammed and hacked if all of these stupid scams and hacks existed back then.
Fun fact, the dev also has a repo which grabs your token and can terminate your account. So it’s not a traditional token logger but it still doesn’t look very good 😵💫
damn.
The scam nitro website has been taken down!!!
Honestly, from all points you made in the video, the 4th point should've been the first, and the first point sounds more like "why would you use this protection method when it doesn't cover everything else?", it's kind of a dumb argument. Of course, a tool that does one thing isn't perfect, but if it is the only one that does that specific job, then it should suffice and be worth using it, especially for digital safety. Obv, this "worthiness" of use shouldn't be greater than plain old cautiousness; my immediate thought when seeing this program was "damn, people really be running this crap without even checking if it's actually a disguised token grabber lmao" as it reminded me of those game hack tools that you'd downlosd and there's a bunch of "hacks" (like godmode) that were filled to the brim with malware. Weariness is always the key, but disregarding what could be a really useful tool just because it isn't a magical swiss-knife of digital protection is unwise at best.
I can understand how you can be against using a "random software", but I don't understand why you would share a statement that is completely baseless. I would be glad to reply to any "proof" that I made a token logger. -DTP dev
Edit : the original message got edited ...
Step 1: make the problem
Step 2: make the solution
I'm honestly surprised the Discord token protector isn't actually a token grabber.
fr
it feels, looks like a token grabber. This is honestly surprising
Like he said it’s a random software, that random software might turn into ransom software
@@ozi_iscozyNo, the software is open source and the maintainers is trustworth, trust me
(yet)
Kudos to NTTS for actually sending a scam site to their own Server.
Erm actually is NOT an site -🤓
@@example_handleerm actually it's "a" not "an" in that sentence 🤓🤓
@@loverboyjourney erm actually is ilegal to have 2 nerd 🤓
@@example_handle illegal* 🤓🤓
Their? Do you mean his?
People don't realise that no matter how many steps you take to not get scammed/hacked, there is no way to circumvent being an idiot on the internet, people who are doing this stuff aren't dumb, they often times know how to get around these things, but they can't get around you not buying into whatever scam they're running.
@@VaultCord Is it really better if the malware steals your browser cookies, which contain your token too?
Yeah it really can't be stressed enough that knowledge is the most effective thing that can protect you from scams like these, as well as being cautious about everything that you come across on the internet.
I wouldn't say to not use these tools entirely though, they do provide some level of protection in case you had a bit of a brain fart or someone else does something stupid on your machine, just as long as you don't feel too comfortable and has done sufficient research about the specific software.
That research involves going through the *entire* codebase in this case, and what if you can't understand it or don't have the time to...?
@@VaultCord You'd need a lot more than that here (alt account + Wireshark at least), plus there could be a "payload" that waits a few days before it attacks, playing the long con...
@@VaultCord some programs can detect if they're on a fake device
This software doesn't compromise in anyway, it just stop token grabbers, it isn't supposed to
Stop every goddamn hack, it's to stop token grabbers specificly, it's better to stop some token grabbers than stoping none.
Yup. NTTS is lost
Yeah, NTTS usually has banger videos but this one is off by a mile. Not to mention he didn’t research the last part thoroughly enough. The “bypass” does turn off the protector but it doesn’t actually grab the token which is still encrypted.
So what about his last point ( i think?) where he says the developer can just change the code anytime to something malicious? Is this point wrong?
@graiitex572 I pray you read the code you are installing before ... installing
@@_.luminosity._ I was just asking.
"Don't use "Discord Token Protector", cuz it does not protect your browser and/or E-Mail"....
... It the same thing to say: "Do not use any antivirus software, it can't save you from robber with gun"
LMAO agreed
real@@InfamousKoala
in my opinion this video is video is INCREDIBLY hypothetical and very stupid, you could've just explained how it works and what to understand when using it and to BE MORE AWARE, instead of, you know, literally destroying this random developer's project, this project is open source and discord doesnt care enough to encrypt tokens, the guy could make this a whole lot better if this was given in a criticism approach instead of trying to ruin the entire project.. this is NOT cool
Go back to making rise vids slave
Totally agreed
hi noq
As a person who doesn't have a good communication skills I find it's useful to not trust and talk back to anyone because I will have anxiety immediately lol
You need to talk to people and that feeling will go away. Continuing to avoid people will make it your anxiety worse.
@@LobonovaPersonal hot take: I’d rather live with social anxiety for the rest of my life
Same and then I feel like I'm being rude by not replying to them then I try to forget the I ever read the message.
@@pipe.down. based take. I got past mine. Didn't end up actually making friends though, it's a two-way process.
@@chlorobyte_projects then that just tells me not to get passed mine even more lmao
The safest you can be on discord is mainly having single digit amounts of Friends that can contact you in other platforms. That way if any of you get their account breached, you or they can just hop onto a different site to tell the situation and keep them aware that the account is now a malicious scam and isn't a friend anymore.
always good to have an alt too and good advice
just keep ur account safe and u can do whatever u want
that is more of a contingency plan, definitely not "the safest" thing you could do. If someone else had their discord breached, they most likely already know, it's definitely better not to get breached in the first place.
One security thing to add: Don't authorize random bots and apps to access your discord account and ALWAYS verify the address of the website you're in.
The main thing I'd add to the "how to stay safe" thing is to use multi factor on more stuff. In the example of the code grabbing your email credentials, that wont do much if the email is also secured via 2fa. Assuming those can't also be exploited via token reuse.
There's a lot of "But why don't we just..." kinda thoughts running through my head on this topic, but Discord is a multi-platform bit of software and so it can't "just use" some extra security provided by the OS as it wont be there on others. Or possibly allowed by the Browser if you're a web user. And then if the feature gets retired then we're all boned anyway.
Basically to stay safe, use your noggin, don't reuse passwords or PIN numbers, use disposable accounts untrustworthy or single-use websites (some game mod sites for example), set up alternate contact methods for a trusted couple of folks for emergencies (Verification if one of you is suddenly sus for example), and know what security tools are available to you on your computer. (Like Windows Sandbox)
2FA isn't perfect, although you're right - it's definitely significantly more difficult to break into an account that has 2FA enabled.
I think the other takeaway from this is "just because you read it on the Internet does not mean it's true". There's probably no tasteful way to say this, but a lot of these scams work because they can prey on people's ignorance of how the system works. They work because people are willing to accept some things on face value without checking. So even if you trust someone, always be at least a little skeptical about what you're told - there are ways to find out if you take the time.
The problem with your argument against it is that the same argument can be used for 2FA. Why use 2FA if you can just grab someone's token and get around it? Assuming the software itself isn't malicious, it's not that big of a deal to use it. Maybe it will stop some token grabbers, which is better than stopping none of them.
And if people really wanted to get around the killprotector function in the example grabber, they can recompile the source with a different name for the exe and config folder. Sure it requires a bit of know-how but why not? The project creator could even include instructions on how to do this, if they haven't already.
But that just falls back into the "false sense of security" bit. Sure, some grabbers will get spotted and disabled, but not all of them, so at the end of the day you're still pretty much just as vulnerable in the beginning than you were without it. You don't exactly know what kind of token grabber you'll run into at that very moment.
If anything, this video more-so teaches people to stop instantly giving 100% trust to literally anyone they meet online. Trust should be something obtained through time and effort and not given up so easily to the first person that dangles the promise of a shiny thing in front of you. No, not the actual shiny thing, but the PROMISE of it.
@@Stellar-Jay The same problem can exist with 2fa too. 2fa can also give a false sense of security. This entire video gave me anti-vaxxer vibes. A vaccine does not make you immune to a disease, it only increases your chances against getting the disease, and that does not mean you would call the vaccine harmful.
@@bitmap4838 Except I wasn't arguing for 2FA either. If you read my last point, you can come to the conclusion you don't need 2FA either. Everyone should just learn to practice a healthy amount of distrust towards their fellow man, especially on the internet, where a good chunk of people are practicing predatory behavior in the hopes of making a quick buck or having a laugh.
Also I would like to point out that a vaccine does neither of those things. A vaccine specifically are dead virus cells that are injected into your body so that your white blood cells have target practice to know how to deal with them when they're alive and more of a threat. So there is no chance increase or decrease of getting a disease, you will get the disease, it just may not rock your body as hard as it would if your cells didn't have the knowledge beforehand.
i aint readin all at💀
@@Mr_Russian_Guy Good for you, have a cookie.
Okay, so this video seems like a joke to me... it has to be...
Regardless of if it actually works good or not, it's an added security-layer to your discord-account...
now, should we all disable our discord-2fa too? because it doesn't protect us from other non-discord scams either.
yessir remove 2fa, I say just leave the internet
YO INFMAOUS
“What should I use to protect myself against scams?”
*your brain.*
Great advice in the end there. A month or so ago I got a friend request from a random person and a conversation starter. First I made sure there were no way a friend request or answering a question could get me hacked. Next I declined anything they tried to promote (artwork for my discord pfp) and then seiced contact. All of this was because I was sceptical. The server they found me on was one I have never written in and their pfp really just screamed "DO NOT TRUST"
bro why
u should have accepted the offer (artwork)
usually it's some ai generated shit
yk it's fun when they say it's not ai generated
and proceeds to send a human with 6 fingers
@@lapotist0 tbh I did not want to bc either it would end up a scam or something not ment for minors. They had a pfp with some questionable things included.
I would rather stay safe then sorry in the end
@@Dr.Callahamngl i wanna know what the pfp was
@@lpsfoxstar8454
basicly it was some animal, pretty sure it is some fictional one. They are on the beach and they only have one peice of clothing and that is a bra...
that is the best that i can explain it
@@Dr.Callaham ah, classic weird discord accounts
I expected the token "protector" to just be an actual token grabber.
@@VaultCordHe is lying, he never did that, NTTS is just spitting BS to make content
@@singe8070 Spotted the author
@@singe8070🫵🏻🫵🏻🫵🏻🫵🏻🫵🏻😡📴👹👹👹👹👹
I'm currently at 2 min into the video and already have an problem with the first point. Just because it won't protect you on other scams, it don't mean it's useless and you shouldn't use it, it's still better to use it rather than not using it.
It provides effectively zero protection as token grabbing is almost never used as sole payload (normally paired with keyloger) while introducing additional third party failure points as the software itself could have security flaws that could lead to NEGATIVE impact on security.
Aside unrealistic scenarios in does nothing
@@RuriYoshinova The fact it's open source is actually good here, like sure malicious parties can look at how it ticks and try to make measures specifically against it but this is assuming there is a flaw in security.
ON THE OTHER HAND good faith actors can ALSO look into the code and detect those flaws to be fixed instead of exploited.
Obscurity is NOT a good safety mechanism as you are just delaying the eventual breach instead of actually building up safeguards against it
@@Jenner_IIC even if token loggers are rare, if you use it you are protected against them which you aren't when not using it.
@@electricz3045 And you are now ignoring the other side, you now have additional failure point in the system. The odds of this having a fault that's going to be exploited is much higher than malware that EXCLUSIVELY nabs your token
@@RuriYoshinovaI see that you have no idea how the program works. Do you think that putting a program open source means that you can bypass it ? If yes then you have no idea of what’s cryptography and environments. This program protects the Discord database by putting it in a secure environment that cannot be accessible from the outside, and encrypts it. In order for the grabber to access to it you would need to manually give administrator permissions to it. Now before spreading BS go verify what you say
Honestly, this video isn't needed. It's meant to protect your TOKEN, not your sensitive info in-general. And it never promises to do more than that. You just need the common sense a pigeon has to not fall for the most basic textbook phishing scams.
it's even better and smarter to just simply never give anybody those tokens and it's smarter to just ignore those suspicious dms
And it's also smarter to look into profile details and if it was created very recently and sending those suspicious dms, it is more likely be a spam bot
This video is for educational purposes only ☝🤓
,
great comment, one issue, I’m inside your house. Nice room ngl
Mhm
😅 Obv
@@R0DBSim inside your balls
And this is why we don't use our browser's password manager
Edit: To clear up confusion, I'm referring to when the video arcs off into how malicious software could steal emails and passwords from your browser
You don't use any password manager or just your browser's? You can password protect your browser's passwords in the same way as a password manager.
If you're saying this because of the fake Steam Login, or fake Discord Login, you don't understand how the password manager works.
Those don't have the same URL as the real websites, so your browser won't autofill them.
In that case, it's actually BETTER to use them, since it'd show you that somethings off.
Just gonna add: you are completely wrong. The password manager in your browser has as good, sometimes even better, security than a password manager, discounting security via a lower chance it will be targeted.
What matters is how the passwords are stored and if you don't have to enter your password every time you open the application providing the password manager it is plain text + obfuscation.
Firefox provides this feature (chromium no IIRC), so if your password manager doesn't have that function, it is worse than using the password manager built into your browser
@@minekpo1 If you download a malicious program, your passwords in your browser's password manager can easily be stolen since _passwords are stored in plain text locally_ on some browsers (like Chrome, used by billions of users). I believe Firefox will still encrypt your passwords on their servers using a "master password," but I don't know how secure the encryption method they use is.
@@VaultCord Yeah, my comment was a little confusing. I meant to reference when the video branches off a little into how malicious software can steal emails or passwords and use that to reset the password for your Discord account
There's this important quote about computer security. Once you let anyone run code on your computer, it ain't your computer anymore.
Making your discord token harder to access after the fact is just putting a band-aid on a third degree burn lol
You literally have code running on your system at all times. Wtf ru talking bout, your OS alone is a bunch of code, let's not even mention the browser you're using, and I highly doubt you own both
By opening a website in Chrome you’re running untrusted JavaScript code. Neat, right?
It does lower your attack surface though, I don't see the problem as long as it's not malware itself and you understand it doesn't make you invincible.
As much as not downloading random software is something I'd like to avoid, it's sort of required for Minecraft modding. One of the main types of tokens grabbed by gaming related viruses now is your discord token, so protecting it makes sense. Every time I install a modpack I'm installing 100's of pieces of software from random developers
That being said, I probably won't use it because I'm not too concerned. Just thought I'd put out some reasons one might use it
Rather just enable windows ransomware protection. Add your browser and discord installation folders to the list of protected folders (and wherever could be sensitive information) and programs can't simply easily access them. You also will get a notification if a program tries to.
im glad the Internet has someone to inform others about scams and stuff like this but part of me missed old NTTS where you'd show off cool computer programs and customizations! It was neat ;3
he said do not use this protector. now i will use this discord protector thanks :D
blud are you ten
@@shadybandit7 i'm using the protector now thanks.
@@shadybandit7nigga it protects your discord token? how is that bad
@@shadybandit7 Clearly you don't understand then. This software, when you audit it yourself because it's open source and can check for yourself, just lowers your attack vectors of possible ways to get hacked. It won't hurt, and could just help add extra protection against grabbers that do use a basic method. Also that bypass is patched for a while now.
Just dont click on any links or don’t middle click any images or dont scan any we codes
> be me
> Ntts uploads a video saying not to use it
> Proves that it works at the beginning of the video
Thats enough for me.
Are you not gonna watch the rest of the video where he explains that it's fucking stupid and useless?
@@CutTheVioletWire 1. It protects only Discord token and nothing more
2. A lot of those "bypasses" were patched a while ago
I still dont know why Browsers still don't encrypt our password autofills and personal information
I wonder when we're gonna get 2023's top 10 end video smooches, I'd say this one was in the top 4 for sure
Eh... The program is clear that it only protects your token and nothing else. It isn't a magical security tool, and the creator knows this. Your average discord user probably shouldn't use this, but it still has its uses and is a very interesting project.
thank you thegu5
Man I really don't care about discord but ur vids r fun to watch, keep it up :)
A good brain is the ultimate Discord Token Protector.
imagine le gucci seeing this and seeing how close she was to being an admin for a short time
Oh come on @NoTextToSpeech, you could do better. You know, and stated, the software was open source, but then pretend like this doesn't matter when it comes to security aspects. Having, just like you told us, no good grasp of software development but then bashing such a well-made tool like that is just a limp cry for content. The author clarified everything on the repo, the "bypass" was fixed long ago and as long as you keep a good and clear idea of how the internet works, the token protector won't do any harm. This video was just... bad.
"You can't protect your browser data with this, so why protect Discord?"
love your videos man, but these arguments stink.
but hey, i work in cybersecurity, so maybe i'm biased on this
You are not biased this video was just dumb
i mean lets assume the token protector is what it says. that still prevents one method of hacking. it just claimed to protect your token so saying its bad because there are many methods of scams seems like a slow news week kinda video.
4:52 common sense is one of the best protection tools against any type of scam
The first argument is very weak.
Wow, completely baseless arguments, as usual
casual ntts
this is why i just pay for nitro myself, no more free nitro scams
2:51 fish
Misinformation or a small open source developer hater?
the best token protector is just common sense...
What's the website where you checked if it read files etc.? Awesome video as always ❤
Casual promoting eugenics at the end, slick
The average IQ of a discord user is so liw, I was in a server where a self-proclaimed computer scientist had their account hacked
1:40 "dosent protect you from alot of the super common hacking methods on discord"
why did you say that? are you acoustic? the point is to protect your discord token not your bank account
FR
Wait a minute, did I see andro??? I know him, he was one of the lead developers of Sigma, a Minecraft hacked client a few years ago.
Racist
@@omikronclient6406Nuh uh napo
3:20
im starting to feel this man watches me
most of the stuff was mentioned but i've experienced something called a discord server scam, someone assumed me being the best owner on discord and of course i got suspicious, they sent me a server and told me to verify but i got skeptical from the first ever entrance, most of the users were offline or deleted, online users weren't even doing anything and their names were all similar to eachother, the verification bot was 'mirai' and to verify they wanted to send me outside discord; where i'm going with this is that people can also get hacked without going to any links but js joining servers, once my sister joined the same server, she didn't click anything js was online and as an idiot, she didn't have 2FA set so she got hacked for a second there, but because of me being a 'smartass', i set 2FA to her and no one could get into her account no more, safest account security system on discord is 2FA, no matter if it's with phone or anything, js have it enabled and you'll never get hacked, of course if you're not a moron
After being hacked once and getting my account back after working with the hacker ((yeah I feel stupid but discord literally didn’t help)), I’ve come to never save my own passwords on my computer. I use a handy thing called a notepad that has my passwords written down, and multiple 2FA systems to make sure that only I’m resetting my information.
It cannot be stressed enough that the best way to not get hacked is to make the process as difficult as possible, don’t keep your passwords saved to your browser, don’t click fishy links and sign in to a fishy site, and most importantly: *Don’t download random shit from strangers*
writing down your passwords irl wont work. they can just log your cookies and sign in that way
@@HackingStuffIDontKnow And please explain how you’re supposed to remember 50+ different unique passwords if you’re not supposed to write them down either.
The whole point of my comment was stating that you should not give your information to fishy things, and that way you won’t be hacked. Hackers never go for something too difficult to obtain, they want it to be easy, having your passwords written down as opposed to saved to your browser makes it much harder for them to obtain it regardless as you do not openly save it to your files.
Unless you’re openly giving your cookies away as your comment is implying, writing them down will work.
@@AimlessAvian1. You can write them down but my point is still valid
2. Running basically ANYTHING can log your cookies, just look at minecraft alt shops
3. They can still just log the cookies with anything, a minecraft client, fake token gen, fake anything that runs code
@@HackingStuffIDontKnow Points 2 and 3 are the same exact thing, and you arent even acknowledging what I said in the slightest with my first comment, which was that you shouldn’t be logging into fishy sites to begin with. Just because you visited a site, doesn’t mean you automatically forfeit your login credentials. You must be LOGGED into the site for it to remember your credentials with cookies.
Just because they have your cookies doesn’t mean anything if you haven’t logged into that site yet. Next time you’re going to try to make a point, at least make sure that the point you’re making isn’t immediately debunked by literally what the person already stated.
@@HackingStuffIDontKnow And before you counter my point, please explain how cookies can store your login information if you haven’t logged into the site to begin with. Cookies are stored PER site, yes they could run a program to grab all the cookies but then again, that’s why you use multiple protection methods besides a password.
If you don’t join random and fishy sites, and log into their equally fishy sites and give them YOUR information, it’s pretty difficult to be hacked.
They can brute force it, but once more, just increase the security by making your passwords more difficult to crack into. 2FA, backup codes, location verification, etc.
There's no such thing as perfect protection, not even common sense, while I've had some insane luck scams wise tho
the safest way to protect yourself, is not to use discord.
Thank you for letting me know man !
Imagine complaining about an app that protects your discord TOKEN because it doesn't protect you from scanning QR codes...
Other than that, yeah fair enough claims and advice.
You missed his point of mentioning that. He mentions that because it’s a very real limitation and it needs to be acknowledged. People will install anti-virus and think they’re invincible while that’s just not true. People may grab this “protection” and think it’s enough when it’s just not true either. They’ll put their guards down because they have a program that protects them.
@@Zencep that doesnt mean you should never use an antivirus
0:03 dude has slash commands and automod within his user account
5:42 that sure doesn’t look like a scam, and I’m sure little timmy will fall for it since google tells you
“Hey kid you’re going to get reported to the police for doing this” as seen in the screenshot
As a Discord member since 2020, this is a relatable flaw in Discord’s security
No for real it’s been the same they security is horrible even with the new features
This isn't a flaw in Discord's security, it's a flaw in everything's security.
Token logging isn't specific to Discord, you can get token logged on anything you can log in to.
@@Hexcede yea but discord could block this by making it encrypted and make it a hard way to get the token so people can’t token log it would make it way safer
@@Acgpro1Aymir No they couldn't, that's not how encryption works.
Not to mention Discord is using Electron which is chromium based. It's just a fancy browser with more direct access to your PC and hardware. It's not as if Discord is improperly storing your token. Your token is stored the same way as in Google Chrome or Firefox. If you think it's as easy as "just encrypt it" then every browser ever would "just encrypt it" and token logging wouldn't exist. But it does.
Encryption works by using a bunch of math and stuff to put something behind a password. For Discord to encrypt it they'd also have to decrypt it. But that means they have to store the password somewhere. Which defeats the point of encryption. Otherwise you'd have to put in a password every time you open Discord. But that wouldn't even stop token loggers because Discord needs the token to be decrypted while in use, so they can just rip it out of your running Discord.
This isn't Discord being stupid.
guys remember if someone gets ur token change ur password it changes ur token
0:54 IS THAT MINECRAFT FOLDER WOOOOOOOOOOOOOOOOOOO!
this is a sorta silly video, its not intended to stop all viruses only basic loggers that only get easier info to get like discord tokens. its still another layer of security that could help on ocassion!
I was expecting the best tool to be common sense, and then it was "knowledge". Aw, dammit. No bingo this weekend either.
The best way to not get your discord account hacked is to not use discord 🤯🤯🤯
Thanks to this video I now use this software 😅
4:59 CasualGamer!?
no text to speech is our god, cybersecurity discord guy, bery nice
As our lovely Captain Disillusion says: "Love with your heart, and use your head for everything else."
3:40 killed me 💀
I understand why you have an issue with this, but your arguments are simply baseless. You state that it only protects your token.. so you'd rather have no protection than a little bit of protection? Second, you talk about giving people a false sense of security.. github is a place for programmers and tech savvy people. I don't think random people would be able to figure out the site, but I'll give you the benefit of the doubt. What the developer should do, to remedy this, is to not pre-compile and just make the user compile (convert the code to an exe) it themselves. A random person wouldn't be able to figure out a compiler, I guarantee that. Third, you talk about how you can supposedly kill the protector process to bypass it. According to the developers response, this vulnerability was patched a long time ago. Do note though, that I have not tested this program and cannot guarantee that. And finally, you talk about how the best protection against scams is knowledge. I completely agree. But wouldn't you want a backup? I know for sure I would, even if it only protects one attack vector out of hundreds, its better than nothing is it not? Though, this is just my opinion, and I respect you may have a different opinion. I only have a problem when people make videos on stuff and provide baseless arguments that lower the reputation of a program that is otherwise useful, for no reason. A developer spent days of their own time making this for completely free. At least have some respect for their work will you?
This video gave me actual brain damage. First of all, for point 3, the source code is open-source. Second of all, point 1 is literally point 2. And third of all, point 2 is literally a skill issue. And point 4 I didn't even watch cause I clicked off and unsubbed before I could finish the video
Bro what
4:46 GEOMETRY DASH REFERENCE
Are you sure that's a fake login page at 2:13? The domain looks correct.
💀 the popup you are seeing is actually fake and the domain is set in the code. It's just a part of the website and not another tab.
The best way to protect your account is to USE YOUR BRAIN
5:04
bud really said "kys"
My favorite toilets the astro toilets with ginormous potential
3:40 lol
*this comment is now invalid*
reason: NTTS pinned comment
IMO if you are an human being capable of proper knowledge it would be a nice addition to your security as long you are still warry of online threats
90% of the vid was about what it doesn't protect from. did he expect it to save your computer from everything? it claims to save your discord token, it saves your discord token, and that's it. it does what it says on the tin. only part 3 and the pinned comment had any weight tbh.
@@grindellionI'm very aware that it just protects your discord cookie and about his pinned comment I either didn't see it or I made this comment before he made his pinned comment
I like to pretend I played the game that the scamming EXE is. I'm like: "I like the part where you obtain the purple dildo to hit the flying monkeys with"
So what you are saying is, that i should not have a car insurance, because it doesnt prevent anyone from steeling my bank account?
~i love you muiua
I have no friends so no one can send a scam link to me
Nah, a more accurate analogy than the window analogy is that your house is 18 inches of reinforced concrete, your door is a blast door sealed with an electromagnetic lock, but the electrical box for that magnetic lock is outside of your house and isn't even locked and the power can just be switched off
“Starving , homeless” then how do they got a phone 😀
did you know that I chose to click on Lawnmower DOOM rather than this video?
No text to speech your à real one
I think it is a good tool to use. But it requires common sense as well. Like not clicking random links in dms it does require a bit of modification though like setting the config to read only once its set up as it would prevent modification. It is a safety net. As a just in case. The number 1 protection is still stuff you yourself can do. Like not clicking random links. Anything asking for a qr code is suspicious. And so on.
sex
Considering the reasons NTTS gave in the video I'd have said it's not useful at all and only adding a potential threat into your system, the pinned comment only adds credence to the potential threat thought too, same dev apparently created a token stealer that bypassed his own token protector. Never trust things like this when in reality common sense is all the defense you need
There's the argument that you could compile the code yourself with a different name and config location so a token stealer couldn't just find the process/files and bypass/modify anything, but if you're knowledgable enough to do that you're probably smart enough to not need a token protector in the first place
@@TheCynicalJedi i did not see the other comment. Damn.
@@xosui5673 Yeah pretty crazy, I fully expected to see another video in a week about how the "Protector" got an update to make it malicious but here we are lol
Discord Token Protector must be from Ohio 💀
Fr💀
average 7 year old with autism
i got a scam from a guy claiming to make digital art. was curious but also new it was fishy at the same time. used ai generated art with a fake watermark to try to convise me into buying it. ended up having fun trolling him in the end, fun times
I love protecting me from protecting me
this developer is the same guy who made the discord stats website
A naked man fears no pickpocket.
once i fell for a QR code scam but i managed to not lose my discord account, changed my email and changed my password as soon as i could
This is a pretty weak argument, its a token protector, not a "we block all websites and discord server" protector.
You SHOULD use this, as any software you download could be a token grabber, installing this is making yourself more secure, and its really sad to see you discourage people from making themselfs more secure over quote "security issues" which have nothing to do what the tool is actually designed for.
And yes, they should fix where malicious software can just edit the config file and turn it off
Yeah honestly it seems like hes just run out of ideas so he made some bogus video about a security issue when the token protector is actually fine and does nothing to worsen your security at all.
100% with you, the research he did on this video was also a solid 0/10, even the bypass he mentioned isn't one as explained by the repo owner OVER A YEAR AGO in issue #60
Using this allocates resources on your computer to 'protect' against *one* of many malware payloads.
Not blindly running software that could have access to the token (anything on Windows, can be easily trolled on Linux) is a much simpler, easier and safer alternative.
@@chlorobyte_projects yeah but obviously the people who download this dont trust themselves to not get token grabbed and it uses barely any recources
Actually ntts, the most powerful tool against discord scams is yourself, remember fortnite once said "Epic will NEVER ask for your password" preach kings and queens
They did respond to your video, will you be responding back?
I'm so glad I'm an adult now with so much knowledge on cybersecurity. The Internet has become more dangerous over the years and I'm pretty sure my child self would've actually gotten scammed and hacked if all of these stupid scams and hacks existed back then.
Honest, at the end of the video, you could have made SUCH a good plug for your entire channel and to subscribe, but you missed it
honestly why do discord not ecrypt the file them self?
and no config to change it
Bro literally just explained how my friends account got compromised up until 3:16 LOL
ain't no rest for the wicked is all heard.