BC INTERNET

Saved by @Mollyycolllinss

$Markus Amalthea Magnuson \u2744\ufe0f$

Markus Amalthea Magnuson ❄️
@scifiagenda 3 years, 5 months ago 451 views

Save to PDF Share See On Twitter

I did more research into the Parler dump. What probably happened was not so much a "hack", but this: When Twilio/Okta shut them down, they just disabled email/phone verification to create an account. This means anyone could directly create huge amounts of accounts via their API.

Someone also found out that fetching Parler posts could be done by enumerating IDs (e.g 1, 2, 3) instead of random IDs that can't be guessed. Unclear if this was via the ordinary API endpoint, or that they found a separate one by monitoring app network traffic.

So you combine these two things and you can create a script to scrape all the posts on the entire platform, using a lot of different accounts to avoid suspicion. Anyone could download and run this script to spread it out over many IP addresses as well.

What I'm still not sure about is whether deleted (meaning flagged as deleted, it's common that services never actually delete data) posts could be fetched without any special handling.

The verdict: The people who wrote Parler are fucking amateurs.

This Reddit comment is a good, and from what it seems, correct, summary: https://t.co/SfJQFQQG2h

Using sequential IDs was supported because the Parler API had an endpoint to convert them to the UUIDs used to fetch posts. Easy to find endpoint via network monitoring, and didn't require any special authentication. 🤦

Here's that specific function in @donk_enby library parler-tricks: https://t.co/kKQT2KCac1

It also seems like they did not have any kind of rate-limiting. This just gets better and better.

More from Internet

$Yous \U0001f168$

Yous 🅨
@YousXP

*Thread* - the hack is wack

The Master Life 'Hack' to Solve All Problems

What's easier?

Developing psychology & exerting willpower to not eat a pantry full of your favorite snacks

or

Not having those temptations in the house

Many 'solutions' being presented to people don't work

Designed to cope with the problem instead of resolving it

Darkness is the absence of light

You can't resolve or remove the darkness

You can only add more light

Recent viral obsessions with 'healing', 'being stoic', 'mental models & psychology'

They all serve their place AFTER the root has been handled

Before adding things to increase testosterone, remove what inhibits it

Before adding 'hacks', remove things causing conflict

If a person fears confrontation & is not assertive

Techniques & thinking offer some support, but the real question is

Why is this the default behavior?

Without starting with this question

All solutions are merely Band-Aids to mask & cope with the symptoms

In reality the real root of his fear of asserting himself & confrontation may likely be:

Ananth Rupanagudi
@rananth

Lunchtime #humour - Ordering a Pizza in 2021!
CALLER: Is this Pizza Delight?

GOOGLE: No sir, it's Google Pizza.

CALLER: I must have dialed the wrong number. Sorry.

GOOGLE: No sir, Google bought Pizza Delight last month.

CALLER: OK, I would like to order a pizza.

Contd... 1/9

GOOGLE: Do you want your usual, sir?

CALLER: My usual? You know me?

GOOGLE: According to our caller ID data sheet, the last 12 times you called you ordered an extra-large pizza with 3 slices of cheese, sausage, pepperoni, mushrooms, and meatballs on a thick crust.

Contd... 2/9

CALLER: OK! That’s what I want.

GOOGLE: May I suggest that this time you order a pizza with ricotta, arugula, sun-dried tomatoes, and olives on a whole wheat gluten-free thin crust?

CALLER: What? I detest vegetables!

GOOGLE: Your cholesterol is not good, sir.

Contd... 3/9

CALLER: How the hell do you know?

GOOGLE: Well, we cross-referenced your home phone number with your medical records. We have the result of your blood tests for the last 7 years.

Contd... 4/9

CALLER: Okay, but I do not want your rotten vegetable pizza! I already take medication for my cholesterol.

GOOGLE: Excuse me sir, but you have not taken your medication regularly.

Contd... 5/9

Advertisement

David Frum
@davidfrum

Yoga employs more Americans than coal. But compare and contrast 1/2

I think many of us carry in our minds an image of the US economy that looks like this

when the reality is this

Nafs
@NafsSays

I'll touch upon few different types of cyber frauds and few possible ways in which we can avoid ourselves to be duped of money, time & energy.

Will also attach few real registered FIRs showing that most of the times such crimes happen with educated & learned people.

1/16

Cyber Fraud type 1 - Facebook/Instagram

Profile cloning -Fraudster will make exact same profile like yours - using pictures from your own profile. They will then message to your contacts asking for money immediately for the surgery of mother or similar emotional lie

2/16

Always verify before sending money.
Don't verify by calling that person, instead, call a common friend or family member of that person. Don't think you can't be fooled - I know at least 20 people working in Top IT MNCs becoming victim of this fraud. Lock your FB/Insta.

3/16

Cyber Fraud type 2 -OLX/Quikr
This generally happens while selling something on OLX/Quikr & similar platforms. In such cases, people will fraud in the name of paying money by asking to scan the QR code or click a link.
NEVER scan the QR code to receive money, give your UPI

4/16

Cyber Fraud type 3 - Fake SMS & Call from unknown numbers
Fraudster will send fake SMS showing amount credited to the account - with correct account number in SMS. Then they will call from unknown numbers asking for money.

ALWAYS check your bank account first via bank app.

5/16

Pasquale "Pat" Scopell...
@ThyConsigliori

Prepping for today's thread, the story of the CURRENT CYBERWAR is clearly overwhelming. J.E. Dyer @OptimisticCon links us to this story. Just one quote to

You May Also Like

Jaya_Upadhyaya
@Jayalko1

DEVI KARUMARIAMMAN, THIRUVERKADU (TN)

Devi is worshipped here as both Swayambhu (self-manifested) and as Parashakti (with 4 arms holding skull,sword,trishul,udukkai/damru).

Here, Muruga got Vel from Devi to fight Suran. So the place was called Vel kadu which became Verkadu.

It is said that there was an anthill here long ago. Devi appeared in the dream of a devotee and asked him to build a shrine at that spot. When the anthill was removed, the swayambhu murti of Devi emerged. So Devi is called Karuvil Illadha Karumari ( not in the womb of mother).

Once, Devi went to Surya in the form of an old woman but Surya neglected her. Devi’s anger made Surya lose his brightness.
To appease her, Surya said that His rays would fall on Her directly twice in a year and touch her feet. Also, Sunday is celebrated as day of Devi Karumari.

There is also a wooden image of Devi (Marachilai Amman) here. Devotees offer locks to her in the belief that She would safe guard their houses.
Temple tank (Thiruchamber Poigai) is said to have been created by Subramanya. Taking dip in it is said to cure skin related disorders.

Jaya_Upadhyaya
@Jayalko1

SRI KUMARIAMMAN, KANYAKUMARI (TN)
#bharatmandir #navratri2021

Created by Maharshi Parasurama and also one among the 108 Shakthi Peethas in the world. The name Kanyakumari stands for Kanya(Virgin) and Kumari(girl).
Devi took this form to vanquish the demon Banasura
@GunduHuDuGa

Once, Banasura(grand son of Mahabali) obtained a boon from Shiva that he could be vanquished only by a virgin.
So, Devi took the form of a kumari and started meditating with the desire to marry Shiva at Suchindram.
Pleased Shiva fixed the midnight hour for marriage with Devi.

Devarshi Narada knew that the marriage would end the chance of killing Banasura. So, he assumed the form of a cock and crowed. Shiva returned back to Suchindram thinking that it was dawn.
Angered, Devi cursed that all food and articles meant for wedding turn into sand and shells

When Banasura heard about Devi’s beauty, he tried to take her by force. Devi, then, killed him and granted the wish of Devas to remain there always protecting them.
The murti of Devi stands with a rosary in hand. Her diamond nose-ring is said to be visible even from the sea.

Once an ancient mariner mistook it for a lighthouse and sailing towards it, his ship wrecked upon the Kanya Kumari rocks. In order to prevent such a tragedy from happening again, the eastern door of the shrine is opened only on five special occasions throughout the year.

Advertisement

Jig's Patel
@jigspatel1988

What is best way to sell strangle in Banknifty on an intraday basis
Simple
at 9:45 Open Option chain and check In which strike highest OI change in call side and put side

Sell both option with combine SL
Enjoy easy and simple intraday trading strategy
Today 35000CE and 34500PE

RadioChinar
@RadioChinar

Demystifying Ghazwa-e-Hind. A #thread.

A recent video of Shoaid Akhter surfaced in social media creating a lot of controversy where the #Pakistani Cricketer can be seen suggesting invasion of India by using the term Ghazwa-e-Hind.
Radicalization of sportsmen seen off late
(1/10)

Some radical Islamic preachers believes that Ghazwa-e-Hind means a “Holy War against India”. As per this irrational & profane concept, there will be a fierce battle to secure victory over #India.
#Kashmir
(2/10)

#Pakistan-based terror groups, like JeM have been using Ghazwa-e-Hind as a Hadith to recruit, fund and justify its terror strikes as a religious holy war against #India.
#Kashmir
(3/10)

Some machiavellian people claim it is a prophecy that Muslim warriors will wage war against the #India.
Jaish & others falsely propagate that Jihad against India is considered holy in Islam & that those participating in it will be granted an easy entry into paradise.
(4/10)

However prolific scholars says that this is a made-up interpretation of some verse in The Holy Quran to mislead the gullible youth of #Pakistan into picking up arms and fighting its Army's personal battle against #India.
#Kashmir
(5/10)

Seth Abramson
@SethAbramson

(1) Kushner is worth $324 million.
(2) Since 2016, Kushner has connived, with Saudi help, to force the Qataris (literally at a ship's gunpoint) to "loan" him $900 million.
(3) This is consistent with the Steele dossier.
(4) Kushner is unlikely to ever have to pay the "loan" back.

Jared Kushner has a net worth of almost $324 million. But it appears that he paid little or no federal income taxes from 2009 to 2016, according to a review of confidential financial documents obtained by NYT. https://t.co/pMQDeCeDNq
— Kyle Griffin (@kylegriffin1) October 13, 2018

2/ So as you read about his tax practices, you should take from it that it's practices of this sort that ensure that he's able to extort money from foreign governments while Trump is POTUS without ever having to pay the money back. It also explains why he's in the Saudis' pocket.

3/ It's why the Saudis *say* he's in their pocket. It's why emoluments and federal bribery statutes matter. It's why Kushner was talking to the Saudi Crown Prince the day before the murdered Washington Post journalist was taken. It's why the Trump administration now does nothing.