Prep priority post on security topic

.vscode/settings.json

@@ -1,6 +1,7 @@
 {
     "cSpell.words": [
         "DALL",
-        "HITL"
+        "HITL",
+        "Squarespace"
     ]
 }

content/posts/2024-tiktok-security-hole-schoker/index.md

@@ -0,0 +1,41 @@
+---
+title: TikTok is stealing your emails and I found out why!
+description: Information leak on TikTok allows to brute-force attack to discover all registered email accounts - sadly this form of leak is rather common nowadays.
+author: Adi Rabinovich
+type: post
+heroStyle: "background"
+showTableOfContents: false
+draft: true
+date: 2024-09-07T11:11:11+00:00
+url: /2024/tiktok-security-hole-shocker-not/
+tags:
+  - Security
+  - Social Media
+
+---
+## TLDR
+
+(Disclaimer: Title written by my 11yo son who insisted it must be a click-bait 😃)
+
+
+## In Practice - My email account likely on dark-web already
+
+This is true, but here is a recent example of not-publicized-enough Squarespace domain heist scenario.
+https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/
+
+
+## What are good security practices? (Feedback Welcome)
+
+
+
+https://www.quora.com/How-hard-is-it-to-bruteforce-the-passphrase-of-an-SSH-key
+
+
+## Some Parting Thoughts
+
+Although I am an avid supporter of free speech and free expression - I think TikTok App is a particularly addicting time sinkhole and can have negative effects on psyche. While we don't police Internet use at our home, we often actively discuss it as a family to promote self-reflection and increase awareness on spotting misinformation and deliberate divisive phobia material.
+
+{{< alert "image" >}}
+**Images By DALL-E 3 via Nightcafe**
+{{< /alert >}}
+>> Prompt: Generate high resolution image of AI robots trading on New York stock exchange floor, sparks fly everywhere