@siguza@infosec.space avatar

siguza

@siguza@infosec.space

iOS hacker, security researcher, 0day enthusiast.
Sometimes RE tools / jailbreak / write-up author.
And accidental maintainer of ever more things I didn't ask for.

Contact in English or German.
PGP: https://siguza.net/pgp.asc

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

jerry , to random
@jerry@infosec.exchange avatar

ITS BOAT DAY!

video/mp4

siguza ,
@siguza@infosec.space avatar

@jerry

lawprofblawg , to random
@lawprofblawg@mstdn.social avatar

Company: Pick a password.
Comp: No, a stronger PW.
Comp: Stronger!
Comp: You used that PW 8 years ago.
Comp: Finally. Now do 2FA and select pics that don't show monkeys.

Five minutes later

Comp: We regret to inform you your data has been breached and posted to the dark web.

siguza ,
@siguza@infosec.space avatar

@lawprofblawg

Company: Pick a password.
Company: No, a stronger password.
Company: No, more symbols.
Company: No, not these symbols.
Company: No, your password needs to be longer.
Company: No, your password can't be that long.
Company: No, this is already someone else's password.
Company: We've disabled your account because your IP address changed.
Company: Now create a PIN.
Company: And now 2FA, please.
Company: We recommend an authenticator app.
Company: But you need to give us your phone number to set up 2FA.
Company: It's to make sure you can always recover your account.
Company: Your phone number can also be used to reset your password, or query your username in case you forget it.

Five minutes later

Company: So anyway, someone with a strong Russian accent called and said he was every single user we have, so we helped him restore access to all of his accounts since he's such a good customer.

siguza , to random
@siguza@infosec.space avatar

People are currently dunking on this post that complains about Mastodon link previews DDoSing their servers - and they deserve every bit of it.

Pulling up this site in a browser with no privacy/sanity plugins installed, it made a total of 3740 requests within 4 minutes, which amounted to 267.22 MB transferred. It has ads left, right, bottom and center, and it has one of those annoying autoplaying videos, which ALSO has a video ad in front of it. The website would not scroll even close to fluently, and I'm doing this on a 24-core M2 Ultra Mac Studio with 128 GB RAM. I had to use the debugger command in the JS console in order to make the network panel in dev tools stop lagging.

In addition, they quote someone complaining about 114.7 MB being requested from their server over the span of 5 minutes. Not only is that less than half as much as you make a single user download if they don't actively cut into your bloatware crap, it also amounts to a whopping 3.06 Mbit/s that you're complaining about. THREE MEGABITS PER SECOND!

Your website is an insult to the internet.

https://news.itsfoss.com/mastodon-link-problem/?cache=bust

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines
    •