-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Prep priority post on security topic
- Loading branch information
Showing
2 changed files
with
43 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,6 +1,7 @@ | ||
{ | ||
"cSpell.words": [ | ||
"DALL", | ||
"HITL" | ||
"HITL", | ||
"Squarespace" | ||
] | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,41 @@ | ||
--- | ||
title: TikTok is stealing your emails and I found out why! | ||
description: Information leak on TikTok allows to brute-force attack to discover all registered email accounts - sadly this form of leak is rather common nowadays. | ||
author: Adi Rabinovich | ||
type: post | ||
heroStyle: "background" | ||
showTableOfContents: false | ||
draft: true | ||
date: 2024-09-07T11:11:11+00:00 | ||
url: /2024/tiktok-security-hole-shocker-not/ | ||
tags: | ||
- Security | ||
- Social Media | ||
|
||
--- | ||
## TLDR | ||
|
||
(Disclaimer: Title written by my 11yo son who insisted it must be a click-bait 😃) | ||
|
||
|
||
## In Practice - My email account likely on dark-web already | ||
|
||
This is true, but here is a recent example of not-publicized-enough Squarespace domain heist scenario. | ||
https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/ | ||
|
||
|
||
## What are good security practices? (Feedback Welcome) | ||
|
||
|
||
|
||
https://www.quora.com/How-hard-is-it-to-bruteforce-the-passphrase-of-an-SSH-key | ||
|
||
|
||
## Some Parting Thoughts | ||
|
||
Although I am an avid supporter of free speech and free expression - I think TikTok App is a particularly addicting time sinkhole and can have negative effects on psyche. While we don't police Internet use at our home, we often actively discuss it as a family to promote self-reflection and increase awareness on spotting misinformation and deliberate divisive phobia material. | ||
|
||
{{< alert "image" >}} | ||
**Images By DALL-E 3 via Nightcafe** | ||
{{< /alert >}} | ||
>> Prompt: Generate high resolution image of AI robots trading on New York stock exchange floor, sparks fly everywhere |