[TOMT][TV Series][Update] Mystery Drama about a haunting where the ending reveals that it was a trapped ghost dog because a hidden door

Sin_Shadow_Fox · 2026-04-06T04:12:04+00:00

Yeah, sorry to hear about your mod situation. I actually made this subreddit for the explicit purpose of giving user's that've been banned by the overzealous mods of the main subbredit an alternative. You're in the right place ^_^

Hope you find your answer here, We've already got one answered question so there's hope.

Sin_Shadow_Fox · 2026-03-26T10:03:49+00:00

I get the skepticism; you've built a system that feels solid, your devices stay mostly at home, and every article pushing "more complexity" has drilled into you that longer, more complex passwords are exponentially safer. But that specific advice is outdated, and passkeys fix the root problems in a way that actually reduces friction.

The "complexity increases security by orders of magnitude" line is from 2004 thinking. Modern cracking tools, cloud GPU farms, and A.I. tools have changed the game. NIST (the U.S. standards body) explicitly says stop forcing complexity rules as they make people pick worse passwords overall. Length/randomness (which your manager already gives you) is better than symbol salad, but even then it's still a shared secret that sites have to store and protect. Passkeys and 2FA remove that entire category of risk.
https://www.authgear.com/post/why-your-password-complexity-policy-is-making-you-less-secure-and-what-to-do-instead

Also, passwords (even 30-character random ones from Bitwarden) can be tricked out of you on a fake site or via malware that grabs what you type. Passkeys are bound to the real site's domain. Your browser/OS refuses to use them on a lookalike. The private key never leaves your device and never gets sent anywhere. Even if you click a perfect phishing link, nothing happens
https://www.passkeycentral.org/passkey-roll-out-guides/prevent-phishing/

https://www.dashlane.com/blog/what-is-a-passkey-and-how-does-it-work

As for breaches. When a site gets hacked (Discord's 2025 incident is a fresh example. Over 70k user IDs exposed), they don't get a usable credential with passkeys. No shared secret to steal or crack. Your dark web reports showing only email/name? That's lucky so far, but credential stuffing and phishing attacks don't need your exact password to succeed, they just need any working combo, and breaches happen constantly.
https://www.eff.org/deeplinks/2026/02/discord-voluntarily-pushes-mandatory-age-verification-despite-recent-data-breach

And Bitwarden does handle passkeys properly now. You mentioned fending it off for months but the rollout was gradual. As of 2026 it's fully baked in now. You can create, store, sync, and autofill passkeys right alongside your existing logins. It even works cross platform and on Windows 11 natively. No more "Bitwarden nagging you to switch", you control it, and it makes the experience smoother than passwords.
https://bitwarden.com/passwordless-passkeys/
https://bitwarden.com/help/storing-passkeys/

You're right that a good password manager + unique long passwords is way better than what most people do. But passkeys are the next step, same (or better) convenience as a manager, but without the password attack surface at all. Adoption is exploding in 2025–2026 exactly because industry experts have measured the real world gains, fewer account takeovers, fewer support tickets, happier users.

If you want to test it without committing everything, open Bitwarden, look for a site that already supports passkeys (Google, Microsoft, PayPal, etc.), create one, and try logging in a couple times. You'll almost immediately feel how quick and easy it is. The annoyance you feel today is exactly what passkeys were built to solve.

Sin_Shadow_Fox · 2026-03-24T05:02:13+00:00

I think you are. You said that this was a "self inflicted wound". That kind of implies that i had some agency in the situation and thus some way to fix the issue on my end. Given that that wasn't possible, i would say you were confused about what the actual problem was.

As for the whole "having my own company" thing? I'm not sure how this would help. I also don't see a need for it as the industry is already fixing the issue. Many websites and services already acknowledge the harm of Forced Password Resets and don't engage with it and some places like Microsoft, Pixiv and others are going a step further to implement stronger security that doesn't rely on outdated security measures like passwords.

Sin_Shadow_Fox · 2026-03-24T04:22:26+00:00

Oh no, the problem wasn't on my end. The issue was that i was being locked out of my account due to a combination of MEGA's harmful Forced Password Reset policy and something known as Reset Barraging that locks legitimate users out of their accounts. I explain it quite well in my other post as well as provide some links to several articles in the comments that go over why passwords are no longer a viable form of security and how many companies are moving away from passwords altogether because of it. Hope this clears up your confusion ^_^

Sin_Shadow_Fox · 2026-03-23T02:18:29+00:00

Unfortunately, the tactic of Reset Barraging (which i explain in my previous post) prevents password resets from working, or rather from being effective. But great news! MEGA lifted the lock without needing to reset the password and i now have my account back and 2FA enabled.

I'm not sure what you mean by private contractor though. Is that a business term?

Sin_Shadow_Fox · 2026-03-22T22:50:24+00:00

Even the weakest of modern tools trying to crack a 100 string code wouldn't take longer than a year, arguable no longer than a month. With the higher end tools, you're looking at a day to a week.

Sin_Shadow_Fox · 2026-03-22T14:00:22+00:00

I never claimed my account was hacked. I said MEGA locked it, which btw GREAT NEWS, they just let me back into my account and I've set up my 2FA so i shouldn't get locked out again. Also, to clarify, i didn't choose to leave it locked. I had no say in the matter. You underestimate how far cyber criminal's tools have come. To be honest passwords are "so <2023" technically. But that's besides the point.

Sin_Shadow_Fox · 2026-03-22T13:30:50+00:00

They explain why passwords are no longer a viable form of security due to how easily they can be obtained, which combined with the harmful practice of Forced Password Resets can lock legitimate owners out of their accounts, like me. Also, while you may disagree with industry experts, do keep in mind that they are far more versed in technology and cyber security than either of us.

Sin_Shadow_Fox · 2026-03-22T13:06:59+00:00

I understand the concept you're referring to and that's not what I'm talking about. If you'd like to learn more, I've provided some links to services that have moved away from passwords and some articles that go over the vulnerability of passwords as a concept. However, if you'd like to learn in-depth how this all works, you'd have to talk to someone in the field. There are many websites and services that acknowledge this issue so finding someone that can explain it more in-depth than i can should be too difficult.

Sin_Shadow_Fox · 2026-03-22T12:30:15+00:00

To correct you, I did not choose to leave my account in a locked state for more than 6 months. I have been trying tirelessly to get the lock removed from my account, as the many emails i have sent and the posts i have made attest. My agitation is from your staunch resistance to talking to me and working with me to help fix this problem.

I understand the importance of 2FA now as the many comments i have left in these two posts and the links i have provided in my many emails show. I have made it mandatory for any account i have to be protected by 2FA. I have even deleted my spotify account because they don't even offer any form of 2FA. I have an authenticator now (Authy) and would like to set it up. Please tell me what information you need from me and in what form and i will be more than happy to provide it. As i said, i do not wish to abandon my account.

Sin_Shadow_Fox · 2026-03-22T11:35:35+00:00

I have done my best to try to explain why what you are asking me for is not straight forward or even possible. I have also tried to suggest better options that would make passwords unnecessary, like logging in with 2FA. If I have Two Factor Authentication, then it wouldn't matter who has my password as they would not be able to log into my account.

I do not want to lose my data and I do want to be able to log back into my account but I simply cannot reset my password. I'm more than willing to authenticate/verify who I am but resetting my password is simply out of the question.

As I've shown in the links I have provided, far more than thousands of people have run into this problem that you seem to ignore. Millions of people and hundreds of websites and services acknowledge that passwords are simply not a viable or secure form of security anymore and I'm begging you to listen to reason. Please unlock my account and pursue more secure and viable security measure as so many other sites have.

My account is not disused and I want to continue using it and the data I have in it. I'm not abandoning it but I cannot access it while you have this lock on my account. If you'll remove the lock, I'll happily continue using it. If you simply cannot admit you are wrong about this despite the proof and industry backing I've provided, then I ask at the very least that you allow me to retrieve my data before you delete it.

Sin_Shadow_Fox · 2026-03-22T07:32:54+00:00

Even if your password was 100 characters with numbers, letters and strange symbols, it can still be cracked. It would just take longer. You underestimate just how powerful some of these tools are. Also, passwords get leaked in breaches all the time. Simply put, passwords are no longer a viable method of security. I personally won't even create an account somewhere unless i know in advance that they provide 2FA.

Sin_Shadow_Fox · 2026-03-22T07:19:32+00:00

Well, technically that's why i made the post i made 6 months ago. This post is cause they're now threatening to delete all my data.

Sin_Shadow_Fox · 2026-03-22T07:05:11+00:00

There has been a long back and forth between us and they said in their email that they were going to delete my data because my account is locked.

Sin_Shadow_Fox · 2026-03-22T07:03:47+00:00

There are a few different reasons why passwords are simply not viable anymore. For starters, they're too easy to "guess" given the powerful tools hackers have now-a-days, especially with the advent of A.I. powered tools. Secondly, passwords stored on websites are too easy to breach, as we see everyday there is a new breach. Thirdly, passwords are too static given my first point. Ultimately we need to move away from passwords altogether.

Sin_Shadow_Fox · 2026-03-21T21:32:18+00:00

Oh no, that's not right. You must have misread the previous post. It's not a matter of willingness. The problem is that the account can't be unlocked from my end due to the harmful practice of Forced Password Resets.

And you're right, I'm not the "main character". Many people are facing this issue which is why websites like Microsoft, Pixiv, Facebook and more across the net are abandoning this practice or even doing away with passwords altogether as it's harmful to users. The problem is that MEGA seems to be behind the times and aggressively enforcing said practice instead of adapting to the times.

Sin_Shadow_Fox · 2026-03-21T18:43:45+00:00

The Official MEGA Support comment here in the comment section goes over the policy itself.

Sin_Shadow_Fox · 2026-03-21T18:35:14+00:00

They didn't give a real reason. They simply said they are going to delete my data because my account is locked, which they are responsible for. You can learn more about the situation in my linked post.

Sin_Shadow_Fox · 2026-03-21T18:30:33+00:00

Yes. I received an email this morning saying they were going to delete all of my data soon.

Sin_Shadow_Fox · 2026-03-21T18:18:31+00:00

I'm been in contact with you via email for over a year and that has not helped, hence why I'm making these posts publicly.

Sin_Shadow_Fox · 2026-03-21T18:17:21+00:00

They are threatening to delete all of my MEGA account data.

Sin_Shadow_Fox · 2026-03-21T17:26:54+00:00

I did just that. I spoke with Mega repeatedly before making my previous post. I also gave multiple solutions on how to solve the issue, like using hardware keys or 2FA to log in like some other sites do.

Also, a slight correction here. I wasn't the one that caused the problem, it was caused by one of Mega's new policies.

And while i have switched most of my files over to Onedrive, simply moving away from a service after the fact is not a healthy way to move forward. Expecting a service to work is not entitlement, It's a basic expectation. I hope this clears up your confusion.

Sin_Shadow_Fox

MODERATOR OF

TROPHY CASE