Content pfp
Content
@
0 reply
0 recast
0 reaction
basil pfp
basil
@itsbasil
lil info sec storytime (1/2) so i’ve been under attack for a few days now; i was initially in disbelief bc everything is encrypted, 2FA, geolocated, and my passwords are all randomized & maximum-character length yet i was under attack & getting breeched, but how? there’s no way they front doored me, im too protected, right? after much diagnosis, turns out, they didn’t they got in via calling customer service & resetting my passwords via security questions - which have been the same 3-4 questions i’ve used for pretty much my whole life now you’d think, wait they can reset your BANKING password by simply calling & reciting your mothers maiden name? well, yes, bc according to the largest bank in the world, that makes perfectly good sense & is strong customer protection geo tracking? last few transactions? social security? nah, i think this random call from indonesia is probably him. trust. i mean, he knows his grandmothers last name… let’s give him the keys to the castle
3 replies
0 recast
5 reactions
basil pfp
basil
@itsbasil
(2/2) so they got in, reset my password & starting draining me accounts naturally, i started getting alerts en masse via email & text so to confuse the shit out of me & reap panic they signed me up for perhaps every newsletter & notification on the internet my email accounts & phone pretty much got spammed out like a ddos attack i received so much spam in such a short period of time that the real alerts were buried, which was of course their goal ultimately i just fought it one by one & changed all my passwords, even tho they didn’t have those after a few days they realized they weren’t going to get shit from me & backed off moral of the story: change your security questions once in awhile bc just like a universal password, or your age, sex, location, number, etc. - everyone on the internet knows the answers to them you can check haveibeenpwned.com to see how many times you’ve been breeched spoiler: it’s a lot
1 reply
1 recast
7 reactions
Kieran Daniels 🎩 pfp
Kieran Daniels 🎩
@kdaniels.eth
LOL WHAT omg dude I’m so sorry. That’s crazy. Apparently the same is true for SIM swaps. There is literally no way to protect against them, even with their sim alert or whatever anyone at the company can still manually swap it. So they just need to know someone or bribe someone or mimic you well enough.
1 reply
0 recast
1 reaction
Kieran Daniels 🎩 pfp
Kieran Daniels 🎩
@kdaniels.eth
@bfix.eth wanna fuck this dude up? lol /osint
1 reply
0 recast
1 reaction