The "Revenge List"
The list was released alongside a statement by Mojtaba Khamenei, the new Supreme Leader of Iran, vowing vengeance for the killing of his father, Ali Khamenei, in February 2026. Mojtaba stated: "These criminals, whose names appear on a list, will take to their graves the wish of a peaceful death in their beds."
Targeted Leaders The infographic, described as a "rogues' gallery," depicts 13 world leaders in orange prison uniforms with sniper targets on their foreheads
it appeared on hamshahrionline.ir/
While Hamshahri is a semi-official publication, there is no confirmation that this specific list represents an official operational directive from the Iranian government or the Islamic Revolutionary Guard Corps (IRGC). However, the timing coincides with US intelligence reports indicating Iran had planned specific assassination plots against President Trump, prompting heightened security measures during his recent travel.
Plan-A̵̛͈̬̥̿͋̓͛̕
in reply to Plan-A̵̛͈̬̥̿͋̓͛̕ • — (0.0.0.0/ 0) •press escape to evade..
geekprank.com/
Geek Prank - Windows XP Simulator and Other Online Pranks
geekprank.comPlan-A̵̛͈̬̥̿͋̓͛̕
in reply to Plan-A̵̛͈̬̥̿͋̓͛̕ • — (0.0.0.0/ 0) •So always be wary of these stickers with a QR code on it taking you where I want. Or someone else which can be malicious. This QR could have been...
Scanning a QR code is like clicking a blindfolded link; you can't see the destination until it's too late. Attackers use "quishing" to hide phishing sites that steal your passwords and bypass 2FA, or to silently install malware on your device. They even stick fake codes over real ones on parking meters and menus to hijack your payments. Always preview the URL before opening, check for physical tampering, and if a code feels off, type the address manually. Don't let a square of pixels compromise your security.
Just another end destination and you could be in hell, so never scan QR's they designed to get in ya mobile most of them if not all.
Scammers use them everywhere around commercial and mostly outside as gas pumps nearby to scan and take your cash off
Plan-A̵̛͈̬̥̿͋̓͛̕
in reply to Plan-A̵̛͈̬̥̿͋̓͛̕ • — (0.0.0.0/ 0) •You could as well directly set a payload on it the victim usually needs a vulnerable scanner app or must grant permission when the phone prompts an action (like "Join Network?" or "Open App?") or grant permission to this or that only when app is up or site etc. Modern phones (iOS and Android) generally sandbox these actions, meaning they will show you the URL or ask for confirmation before executing anything dangerous.
it relies on specific conditions rather than the code simply "running" itself though.
A QR code is just data storage; it cannot execute code on its own. However, attackers use three main methods to deliver payloads directly:
1st one you probably seen how Mr Robot kept his files n audio CD's? Yes Steganography or steganographic Payloads. Stagonagraphy is hiding code in an image so attackers can hide executable code inside the visual pattern of the QR code itself. A recent example is the fezbox malware (discovered in 2025), where a malicious software library downloaded a QR code image, extracted hidden code from it, and executed that code to steal cookies. In this scenario, the QR code is the payload carrier, bypassing traditional text-based security scans.
then there is as well, Protocol Handlers.
QR codes can encode specific protocols that trigger immediate actions without visiting a website. If a user scans these, the device attempts to execute the command directly:
WiFi Auto-Join: Encodes WIFI:S:Network;P:Password;; to force a connection to a rogue network.
vCard Injection: Can attempt to add a contact with malicious links or exploit vulnerabilities in the contact app.
App Schemes: Links like intent:// (Android) or specific app URLs can trigger app installations or deep-link commands.
Then there is also the possibility to use brainfuck for 2 known vulnebs.
Can a QR code contain a Brainfuck exploit? Yes, but only if the device is running a vulnerable Brainfuck interpreter that processes the QR data. The exploit targets the interpreter's bugs, not the QR standard.
The famous Yi Home Camera and ZBar exploits worked because those devices used vulnerable C code to decode the QR data, not because of any esoteric language.
Plan-A̵̛͈̬̥̿͋̓͛̕
in reply to Plan-A̵̛͈̬̥̿͋̓͛̕ • — (0.0.0.0/ 0) •The same you see for gofund me I can replace that text with my QR.
So be aware as if I can many can as well.
reshared this
Melissa BearTrix and 67guanacos89llamas181alpacas reshared this.
Unus Nemo
in reply to Plan-A̵̛͈̬̥̿͋̓͛̕ • •@Plan-A̵̛͈̬̥̿͋̓͛̕
QR codes are great, they can hold an amazing amount of information in a very small amount of space. Though as you have said we should always pay attention to what our device asks us and not just accept whatever is offered. If I scan a QR with my phone and it is a vCard my phone will not just add it, it will ask me what I want to do with it. If I am not expecting a vCard I am just going to ignore it. My devices will not just auto join a network. I have to approve any network before it will join it.
Having sane settings on your devices goes a long way. Pay attention to what your device asks you. If it asks if you want to join a network and you did not expect such then refuse. If it asks if you want to create a new contact and you did not expect a vCard refuse. It really is quite simple to avoid being scammed. You just have to pay attention. If your not sure error on the side of caution. Reject it.
There is never a reason to scan random QR codes. If it is not relevant to something you are doing, such as a user manual you received with a purchase has a QR in it. I scan QR codes at work every day for inventory. etc ...
Plan-A̵̛͈̬̥̿͋̓͛̕ likes this.
Plan-A̵̛͈̬̥̿͋̓͛̕ reshared this.
Plan-A̵̛͈̬̥̿͋̓͛̕
in reply to Unus Nemo • — (0.0.0.0/ 0) •@Unus Nemo Yes, you summed it up correctly.
As always the weakest point is the human factor just accepting and clicking to rush just to be trapped if it's a badware image.
Your picture is broken btw, although for me..
Not many have that awareness as you described with the vcard or deny unknown destinations even on trusted shopping QR's they could have been tampered and replaced.
This underlines the importance for all internet users as I imagine there are weak factors and many to adopt a proper browsing hygiene and that include QR's.