reddit General

  • Agree
  • Like
Reactions: Smar Mijou, InteracialBowelSyndrome, Lady Rackets Ass and 3 others
Finger Pistols said:
Why call it a "security incident" instead of a security breach or anything else? The former makes it sound like "consent incident" , which makes it way funnier.

Sperging and autism below:
Probably because the post was written by a tranny and they cannot take an L, that would crush their already fragile ego and make them commit 41%. They have to frame it as "opssie, we did a fucky wucky. It was totally not our fault that some of us fell for a phishing scam".
Click to expand...
You should have picked up on that from the "Here's what we know". I'm surprised it didn't add why this is "problematic".

These troons literally cannot write anything without using globohomo media/tech oligarchy phrasing. No doubt because they aren't particularly intelligent to begin with and can only form statements from what they've consoomed.
 
  • Like
  • Agree
  • Thunk-Provoking
Reactions: Smar Mijou, InteracialBowelSyndrome, Hubelublub and 8 others
HistrionicBitch said:
apparently the hackers cloned reddit's corporate intranet login portal and got the phish-ee to sign in to that somehow. the bigger question in my mind is how they even had access to the intranet in the first place to copy it properly, seems like at least a partial inside job.
Click to expand...
All they need is the link to the corporate sign-in, so they could copy the html.
The only problem with this is that the employee would know right away that they were phished, because the fake site wouldn't function properly like the corporate site would.
This is why the employee was able to "self report" the phishing, probably right away.

I'm curious to know how they tricked this retard into clicking a link to the fake site.
They probably sent him an email pretending to be corporate or something, I would guess.
This really is not very sophisticated at all. Any retard could probably do it if reddit's cybersec is this bad.

Phishing attacks are primarily aimed at senile old boomers or people with DSP-level intellect.
Very embarrassing this worked on reddit staff with this level of security clearance.
I'm sure this person earned their position fairly.
 
Last edited:
  • Like
Reactions: Maggots on a Train v2, Radola Gajda, Humbert Humbert and 4 others
indomitable snowman said:
Here's a pic of him from a previous reddit post posing as Rosie the riveter.
archive.ph

I volunteered in a flooded zone. Friend had this hairband. Couldn't r…

archived 9 Feb 2023 23:27:59 UTC
archive.ph archive.ph
archive.ph

I volunteered in a flooded zone. Friend had this hairband. Couldn't r…

archived 9 Feb 2023 23:29:45 UTC
archive.ph archive.ph

I'm assuming crystal is slang for crystal meth?
archive.ph

Heading to Amsterdam for the DGTL festival at the end of March. Will …

archived 9 Feb 2023 23:34:03 UTC
archive.ph archive.ph
Click to expand...
1675988315366.png

Ironically he isn't half the man my mother is. Also, that's not how you flex.
 
  • Like
Reactions: From The Uncanny Valley
Info Neutral Agency said:
Can't believe 1,800 "people" are working for free. It must be hell for them to get a real job with the the amount of mental ill- I mean neurodivergency in the digital offices called Discord.
Click to expand...
Not free. These are real employees.

Saw the number in a post about layoffs. I think it was from Business Insider, who is apparently subscription only so I can't screen shot it.
 
  • Informative
  • Like
Reactions: Corpun, Smar Mijou, ABE LINN COHN and 1 other person
Why is everyone assuming it was trannies who did it, and not Pajeet who got an email saying "Click here for hot Singles on your area!"? Considering modern tech companies I would say it's at least a 50/50 chance. The fact it was administrative stuff leans strongly to Pajeet Shitting in the Street again.

The trannies are all unpaid forum jannies, not Admins.
 
  • Like
  • Agree
  • Thunk-Provoking
Reactions: Bonkers D Bobcatkin, Smar Mijou, Biggie Smalls' Taint and 7 others
Finger Pistols said:
Why call it a "security incident" instead of a security breach or anything else? The former makes it sound like "consent incident" , which makes it way funnier.

Probably because the post was written by a tranny and they cannot take an L, that would crush their already fragile ego and make them commit 41%. They have to frame it as "opssie, we did a fucky wucky. It was totally not our fault that some of us fell for a phishing scam".
Click to expand...
I actually may be wrong here but I believe the formal terms in Cybersecurity are "Event" (there was activity but nothing was breached) and "Incident" (lol something bad actually happened).
 
  • Thunk-Provoking
  • Like
Reactions: Local Target Tard, Lady Rackets Ass, From The Uncanny Valley and 1 other person
Wendy's Chili said:
All they need is the link to the corporate sign-in, so they could copy the html.
The only problem with this is that the employee would know right away that they were phished, because the fake site wouldn't function properly like the corporate site would.
This is why the employee was able to "self report" the phishing, probably right away.

I'm curious to know how they tricked this retard into clicking a link to the fake site.
They probably sent him an email pretending to be corporate or something, I would guess.
This really is not very sophisticated at all. Any retard could probably do it if reddit's cybersec is this bad.

Phishing attacks are primarily aimed at senile old boomers or people with DSP-level intellect.
Very embarrassing this worked on reddit staff with this level of security clearance.
I'm sure this person earned their position
Click to expand...


The easiest way to hide a phishing dupe page is to have it forward intentionally incorrect login information to the actual login page and have the target redirected to the “we’re sorry but your password or username was incorrect, please try again.” Login page. You could have it forward the correct details to the actual login page, but that would potentially give away that there is a malicious third party. Sending a bunk login would make it appear as though someone attempted to brute force a login rather than phishing details.
 
  • Informative
  • Like
  • Agree
Reactions: Corpun, Humbert Humbert, Nuns with guns and 9 others
Wendy's Chili said:
All they need is the link to the corporate sign-in, so they could copy the html.
The only problem with this is that the employee would know right away that they were phished, because the fake site wouldn't function properly like the corporate site would.
This is why the employee was able to "self report" the phishing, probably right away.

I'm curious to know how they tricked this retard into clicking a link to the fake site.
They probably sent him an email pretending to be corporate or something, I would guess.
This really is not very sophisticated at all. Any retard could probably do it if reddit's cybersec is this bad.

Phishing attacks are primarily aimed at senile old boomers or people with DSP-level intellect.
Very embarrassing this worked on reddit staff with this level of security clearance.
I'm sure this person earned their position fairly.
Click to expand...
In defense of Reddit...

These attacks are low effort, potentially high reward, and virtually free. They are used because they work, and no matter how good the cyber security of an organisation is, people are always a vulnerability that can be exploited.

People in governments, militaries, corporations fall for this shit on the daily.
 
  • Like
  • Agree
Reactions: Drama keen, Humbert Humbert, Whatevermancer and 13 others
You must log in or register to reply here.
Back