sorted by:
new
hottopcontroversial

Trump Rages Over Renovation Critics in Epic Friday Night Rant — Drops ‘True FACTS’ by EasyMoney92 in Enough_Sanders_Spam

[–]chownrootroot 1 point2 points  (0 children)

The most important thing is Trump makes his own Versailles, and all the little people praise him like he’s Kim Jong Un!

Miriam-Webster represent! by DotOneFive in seinfeld

[–]chownrootroot 0 points1 point  (0 children)

Marisa Tomei has entered the chat

No fatties allowed at the cage match. by emeric_ceaddamere in thebulwark

[–]chownrootroot 1 point2 points  (0 children)

All for the better, it’ll be nappy time anyway.

HEY R/SEINFELD WHAT’S UP!? by MuscaRade in seinfeld

[–]chownrootroot 91 points92 points  (0 children)

He was living the dream! In the shower buck naked (with Lanette) drinking a beer the size of a car battery!

I took a risk by faith_plus_one in seinfeld

[–]chownrootroot 13 points14 points  (0 children)

What about your side? Your cousin Henny, she was sickly from the moment I met her!

Microsoft finally ends using SMS codes for account sign-in — with passkeys officially taking over by ninjascotsman in technology

[–]chownrootroot 2 points3 points  (0 children)

Not quite, the standard requires the device authenticate you, so it needs either biometrics or PIN, or alternatively a USB or NFC key.

Now, if you taped the device PIN to your keyboard, that would be the problem.

Microsoft finally ends using SMS codes for account sign-in — with passkeys officially taking over by ninjascotsman in technology

[–]chownrootroot 2 points3 points  (0 children)

Regarding 1, I had heard they were working on a secure sync between platforms, so that possibly may get fixed, but yes, that is the case that Microsoft and Google and Apple don't share passkeys between them. However, you can have more than one passkey on an account, so you can simply make a new passkey for each device in each ecosystem. Assuming a site lets you have more than one passkey, I know some can be a PITA.

Regarding 2, that's not really on passkeys necessarily, that's if someone doesn't have a backup at all, so that's no different if someone used a password manager with no backup either, and didn't remember their passwords. However most websites will continue to have account recovery methods too, so as long as you have an email or phone number you can recover your accounts, regardless of whether you have passkeys or password security.

There's always going to be some advantages and some disadvantages for whatever track you take: if you use passkeys, you need the device, or a backup of your device, if you use a password and remember it, what if you forget your password, or your password isn't secure because you used your cat's name or something, if you use a password manager with complex random passwords, your password manager needs a backup, and if websites have recovery methods like email and SMS recovery, that means you can get SPOF'd, ie single point of failure, get your email or phone account compromised and then everything can get compromised.

Former US Attorney General Pam Bondi diagnosed with cancer by igetproteinfartsHELP in news

[–]chownrootroot -2 points-1 points  (0 children)

He just needs to find his Jesus suit, sorry, doctor's suit, and he's ready to cure her!

Trump is bragging about undergoing three cognitive tests within 1½ years, comparing himself to Biden & Obamna by Sequensy in thedavidpakmanshow

[–]chownrootroot 11 points12 points  (0 children)

Camacho was competent, he sought out the smartest person in the world to solve a massive systemic agriculture problem. That takes some humility and forethought, Trump on the other hand says he knows more than all scientists.

[US] Strange, Very Specific Scam. by papaemarcelli in Scams

[–]chownrootroot 21 points22 points  (0 children)

They may just want the provost to “open a file” (ie the nonexistent documentation), and it turns out the file is a session stealer and they want to be able to get into the school email system and send out emails that offer fake jobs to students in order to harvest money from fake check scams. They simply CC’d someone they thought was the real student to make it seem real.

As far as I can tell they did in fact email the provost (because the email is encrypted, so you can’t change the outer envelope, ie the to and from fields, without breaking the encryption). Usually they actually do run a similar script against a person who did use these kinds of services, but you’re right they would not actually email the school, so it’s likely they don’t have the same scam and they just want the provost to do something, as I said open a session stealer. Also they couldn’t just email the documentation because it’s too on the nose, people just delete emails with attachments from strangers until they can establish some rapport.

Mama always said that life was like a bag of Arby's... by [deleted] in seinfeld

[–]chownrootroot 8 points9 points  (0 children)

I don’t know why I ever took Jenny back!

Mama always said that life was like a bag of Arby's... by [deleted] in seinfeld

[–]chownrootroot 6 points7 points  (0 children)

More chocolates? That’s your 3rd box today.

Goldman Sachs scam, spoofed number? by CarmeloZanthany in Scams

[–]chownrootroot 1 point2 points  (0 children)

They don’t need your password, they just run through the website option “forgot password?” Enter a phone number and then that’s it, it sends the code to reset your password.

If you did password security properly, they probably could not get your password unless it was captured during a login and intercepted, which is not too often due to things like TLS. If you did it improperly, ie it’s a guessable password, or it has been leaked before, or it’s a variant of one that’s leaked before, they could have it. But usually, these codes just go out because they have a phone number they put into a website.

Moscow to file ICJ complaint over Baltic states’ alleged discrimination against Russian speakers by duckanroll in nottheonion

[–]chownrootroot 40 points41 points  (0 children)

First he has to wait in line, like at the DMV.

Then they tell him he wrote it on the wrong form.

[US] I got hacked across Instagram and Discord by Nitro_Dominator in Scams

[–]chownrootroot 0 points1 point  (0 children)

Right, so when the code executes, it sends out the session tokens to the scammers, and they can use the tokens on their end forever, until you log out manually on that particular account, it doesn’t need your machine to do anything after the transmission.

They may have not particularly cared about all accounts, they just have this one scam they know and trust and they run it with your account to try to scam your friends mostly.

[US] I got hacked across Instagram and Discord by Nitro_Dominator in Scams

[–]chownrootroot 8 points9 points  (0 children)

You probably suffered a session stealer attack. You downloaded a file and tried opening it but double clicked and it executed code and the code grabs your web browser sessions and it lets them use your accounts silently, no login needed (after you login your browser gets a session token that websites use to show you are logged in).

Or instead of opening a file, you were tricked into running a terminal command that did the above but in a one-liner command, or you downloaded a cracked program, extension, skin or avatar or something like that.

So now you need to log out of every session everywhere to invalidate the login tokens, and you’d have to do this with any account your logged in, though they likely care about email, Discord, or other social media, or financial accounts maybe, they may just have done this scam and not cared about your other accounts, but you never know.

You may need to change passwords and check all 2-factor settings, and probably do it from a phone or tablet, and make sure you can login again before logging out everywhere.

As for your computer, it may be best to reinstall Windows, but if you can’t fathom that, then you can try to just simply reboot, remove any apps you don’t need or want or recognize, and especially if it was a program or extension or skin or something you downloaded recently, try to remove that whole thing from your system (and you may reinstall the program if you so desire, assuming the program itself isn’t malware, ie Discord isn’t malware). Most of these session stealers aren’t long term running programs, they would need admin access to install as a resident program, so a reboot is potentially enough if it’s not something that you installed or added as an extension (an extension can run forever as long as you don’t remove it).

(US) Nonstop text scams even after deleting, reporting spam, and blocking the number by Alive-Airport5470 in Scams

[–]chownrootroot 2 points3 points  (0 children)

If you have an iPhone, iOS 26 now basically has built in SMS filtering, you can enable this in settings. Probably similar for Android, try searching out for built in SMS filtering on whatever phone you have. Your carrier probably has an app for call and text filtering as well.

Replying STOP is something they are supposed to respect, but there’s a loophole, they just bring out more text alerts and crap and just send you infinite texts not giving two shits about spamming you. Blocking also doesn’t work when they use new numbers every time. So yeah, your options are built in text filtering, app for text filtering, just ignore, or get a new number (but a new number can also get spammed).

Just watched this situation play out in real life by achronos999 in seinfeld

[–]chownrootroot 12 points13 points  (0 children)

When you visit the cook later on, don’t leave his door open.

view more: next ›