easysatan
124216
2136
46
May 18, 2021 3:55 AM
easysatan
124216
2136
46
[deleted]
[deleted]
ImAD0g
He eats da fish
rmcn96
/r/masterhacker for sure
mmmdonutss
Jin yang!
DIINKELBERG
Jimmy O. YANG. I love that guy
ShooterMcGrabbin
Most 'hacking' of personal accounts is just phishing & brute force... Not exactly something that requires a ton of technical knowledge.
jdjones1414
His special is on Amazon Prime. If you're a fan of stand-up I highly recommend it.
Trickky
95% of "hacking" is social engineering. It's not that they are smart, it's that people are exceptionally dumb and click on random things.
KiwiGameDev
Social hacking is often the most effective. The weakest link is often you.
spookyactionatadistance
I'm a dev but my knowledge of network stuff is basic and I prefer it that way. It was the most boring classes
slinkhi
TIL programmers are a race.
Shineupordown
How !?
Colopty
Just look over their shoulder when they type the password. Or call them saying you're the local password inspector. Shit ain't hard.
MyNameIsRichardCS54
You have to find the hidden partition of ram.
INxP
Which is easy once you're in the mainframe. Not many hackers can type fast enough to break in though.
MyNameIsRichardCS54
If you get two of them on the same keyboard...
shawnmilo
False.
PicassoCT
It helps to realize that all those companys, were you are not customer, give a shit about everything you do. Imagine a vacum cleaner..
PicassoCT
and everytime there is dirt, they switch it on and it makes a sound like "WUULUUVEOUURRRRCUSTUUMERSPRUVAAACCCYYY".. and that is all it does.
freedom4scale
Who's the comedian? Is he in Netflix?
dalaiyoda
https://www.imdb.com/name/nm4497202
deidyomega
Software dev here; hacking facebook isnt that easy. But tricking users to giving you their password is. :D
Noughmad
That's funny because it's exactly the reason why FB got started. So Zuck would have a database of emails and passwords.
TheBlueMuppet
Or just wait for a breach and get the login info that way, like Chase Bank allows. They're very protective of my account recently. Very.
MattyMattFFS
There's been 3 exploits I've used over the years. One still sort of works
gpixelVillain
Proof it
MattyMattFFS
*prove. They all let you do the same thing, post as any user. It's been facebook's most common exploit.
gpixelVillain
Tell me more please ^^ you say there is an exploit where i can Post AS any User??? Thanks for the correction ^^
5NoteHalf
That's technically hacking facebook. I tell clients all the time when they ask "what do I need to do to keep from getting hacked?" 1/2
5NoteHalf
"Easy. Stop giving out your information to anyone that asks." I usually phase it more politely. 2/2
DeeDoubleYu
Technically, or I guess by common definition isn't tricking the user called phishing? Where hacking is more like tricking the machine.
5NoteHalf
Phishing's acquiring the login, hacking's USING it (illegally) technically speaking.
iCurse
Is this the Asian guy from Silicon Valley?
IThinkYouGotAFineBrainJack
You understand you just insulted my entire race of people? But yes.
iCurse
Wasn't that his entire character on SV though? Token Asian programmer
Slander7
He is perhaps not a positive example of Asian representation, but I think he's way too weird and has too much screentime to count as token.
SchoolOfHardKnockers
Molotovbliss
madcatii
GazongaGizmo
my headcanon: since hackers & trainspotting came out at about the same time, him & sick boy are twins. one got hooked on H, the other on PC
DarkZalgo
Nah hacking on that scale is pretty easy. Tools for social engineering aren't hard to use. Just get someone to click a link and bam.
photog
You can also get into someones facebook account with a simple app as long as you're on the same wifi.
DarkZalgo
Or if you wanna go an even more illegal route, follow some guide online and set up an evil twin at a Starbucks or something.
FoxyEllie
There's a scam floating around where someone on discord messages you claiming they reported your steam account by mistake, and then they (1)
FoxyEllie
get you in contact with a "steam employee" (probably the same guy different name) who asks for your password to fix the issue. Most (2)
FoxyEllie
hacking is just tricking the victim into giving it away for free. Social engineering, because there's no shortage of ignorance. (3/3)
Photeus
No amount of security software can stop an idiot handing over the keys.
LordNergal
What's even more fun is to call someone up, pretending to be their bank, give them the standard "Banks will never ask for this" spiel you 1/
LordNergal
get from real banks as part of the paperwork, then later on ask for that very info to gain access to their bank account. Most people have 2/
MaybeIwasOutOfTown
Jimmy O. Yang
Noughmad
This is not a hotdog.
MyharothS
Should have been soy.
MaybeIwasOutOfTown
awesker002
HarmonyIsTemporary
That’s some tasty sauce. Thank.
Shickzilla
OhLookNobody
It’s his special on Amazon Prime. The original quote is actually “but thank you”
DiabloGrandeArts
Bitch you understand you just insulted my entire race of people! But thank you. You get TWO fortune cookies tonight, miss!
Colopty
It's weird to see that sauce with a texture.
Anewandoriginalname
Marinara? What sort of midwest, chilli on spaghetti shit are you used to?
Colopty
RubyPorto
Jian-Yang
rallemus
Fuck you Jian-Yang!
Bossysailor
It's easy, just go on the DARK WEB!
v
TCooley79
Ithinkiloveher93
Sturt
Gorzine
Interestingly enough the passwords are located on the darkweb xD
SkyxzStone
Sleepy360
SirButcher
I like the deep web more. That is where the INTERESTING kinds of stuff are.
PineappleLoopsBroether
Can I ask you about dw stuff?
ojisama
And here I am stuck in the derp web
BlondieBlon
Where is this from?
TheTenno
Letterkenny
CongoRanger
Tom Cruise: The Teenage Years
ActionJohnnie
The dark web
Thradlad
Figure it oot
voluptuousdebaucheries
He reminds me of young tom cruise
atzanteotl
Thank you! I thought he reminded me of someone, but I could never place it.
windowtudawoll
Wow same and I think he's maybe the best character in the show
voluptuousdebaucheries
Glad I'm not the only one who sees it!
JimLarsson
The Dark Weeeeeeb!
Rasayana
You called?
Element818
I suggest you let that one marinate!
nihiltres
dogestyle
strt
MaybeIwasOutOfTown
STYURT!
hitdog42
STRT!
petria
ROALD!!!
AndBingoWasHisName0
strt?
Beezlebubble
*force chokes*
alanrails
All the it security people I know have zero iot things in their house
unkiereamus
I'm building a home automation system, but very carefully. Among other things, it's air gapped, and will never deal with physical security.
Grenateh
Exactly. I'd never get one, ever.
SilentScreamsX
Do they also wear tinfoil hats?
anengineerandacat
I have a few... but they sit on a different network and the SSID isn't public and they are rate limited.
Splosions
Buddy of mine has blocked all of social media, it is shocking what things stop working because they send data to facebook
SectionF4
I have iot things, but I built them, and wrote the firmware.
sdfsfsfsgs
I highly doubt. I bet either all of them do or almost all.
Excludos
That's a bit far. It's more about risk management. Iot things generally don't ruin your life of they get hacked, so who cares?
StevieMcSteveface
IOT?
Excludos
"internet of things". Aka when you add internet to everyday objects, such as tv, fridge, smart home systems, toasters, etc
StevieMcSteveface
Gotcha, cheers.
ThomKlanc
Typically not very secure. Hackable (podcast) has done multiple episodes on hacking them and getting access to the network via IOTs
jharasym
I have an “iot network” which is mostly closed and has restricted access inbound from my normal LAN.
sleepwellfriend
I use Google Home. It tells me the weather & time, and plays ambient sounds while I work. I rly doubt it's breaking the law & data mining.
WrongUn
Iot?
LtKifKroker
"Internet of things" referring to non-traditional interconnected devices (e.g. smart thermostat and alexa)
WrongUn
Thank you, world-wise person. Im as good as 80yrs old now
Chereazi
Yea, most of that shit is vulnerable as fuck to attacks... Especially for untrained people that don't set it up right...
stevencloser
And most people aren't nearly interesting enough to bother attacking this way.
justadude41123
The security people you know obviously do not fully understand security
AdmiralButtStuff
Same, and none in my house either. Fuck all that.
ElviraQueenOfDarkness
Only IOT item is my tv. And my pi-hole. Monitors him closely.
thesameasyours
Are you posting this by carrier pigeon?
DoWGray
Of course: https://datatracker.ietf.org/doc/html/rfc1149
AdmiralButtStuff
Pony Express Telegram actually.
thesameasyours
Im sending morse code to russian satellites
libaf
None of them have phones?
LordNergal
The phone goes inside a steel safe that is inside a Faraday cage.
libaf
That is buried in the ground, on the lowest level of a 100 meter deep shaft, surrounded by eldritch runes and a sign that says "Fuck off"?
thesameasyours
Do they have any atm machine machines?
rbudrick
Ass to mouth machine that makes more of them?
hitdog42
How about some garlic aioli in the fridge? (Aioli means garlic oil. It's funny, dammit!)
alanrails
Ha fair enough, my bad
morbidcurioffulous
No. Don't apologieze, you were right.
thesameasyours
Anywho all I have is a phone, no computer. So i tell my boss not to expect me to work from home.
Noughmad
Do you count smartphones under IoT? Because they are the worst of all, and just about everyone uses them. Including me.
AoxomoxoA35
No
swedishpancakeswithlingonberries
Nope crappy track phone for me, used for texts and phone calls only.
Excludos
The definition is vague, so technically you could. But generally no, it is not. Computers (and by extension phones) are not considered iot
EuphCat
If you're talking about brand new, monthly updated phone, then it's actually gotta be decent, either running iOS or Android
EuphCat
If it's 5 yrs old "no more update but good enough for me" android, then it'd be plenty bad, but still not quite so as those IoT rubbish.
Noughmad
The brandest newest updatedest phone won't help you when it has Siri/Alexa/Google Assistant installed and you gave permissions to Instagram.
EuphCat
And these IoT things come with permissions, possibly shadier than Instagram? :D
majestrate
Social Media platforms are significantly worse than any IoT device you put on your network.
WhatzitTooya
*laughs in mirai*
alanrails
ottman001
Regardless of which is worse, that one bad thing is not as bad as another bad thing doesn't make it ok.
UserNamesArentEasy
That can easily be argued.
Blank1612
I know the password for your baby monitor though. You don't mind if I use it for ddos'ing the FBI right?
Infinias
Why from all things would you ddos the FBI?
Blank1612
Good question. As far as I remember they got ddos'ed by thousands of IoT devices a few years ago. I based it on that.
dogestyle
social media platforms are pretty bad, but IoT devices with embedded assistants *always* listen to you
Sr687124
but they dont understand if you speak in foreign language dialect. Checkmate!
PathologicalLier
so you mean to tell me, me putting my alexa language to english and talking in upper austrian accent was a 1000iq move?
Sr687124
Frelock
As a security person, they're not. You can look at the network traffic coming from them; they only record and send when you say the keyword.
Frelock
I also appreciate that Google gives me access to a record of everything I've said to my assistant, so I can see *exactly* what they have .
IamNotAshamed
That's not how that works. Social media (Imgur included) can collect way more deeply personal data than a smart speaker can.
potshot
Some social media is worse than others, but at least with SM you can have more control on what data you give it.
PrincessDaystar
Not my meme data!
Sr687124
stevencloser
My assistant can't even understand when I ask it when the next bus comes unless I ask using very specific words. You're overestimating them.
dogestyle
it's only a matter of time. And the more data they collect the better they become.
stevencloser
They used to be able to understand much better than now. I have no idea why.
stevencloser
As someone who has been using them a lot... they get worse.
Ilovehavingfreehealthcare
So? My neighbors can hear me watching cartoons and having sex, why shouldn't corporations get to as well?
swanglemydangle
This is exactly why I own multiple smart speakers. They get to hear that in surround sound.
dogestyle
"google, ask alexa to tell siri to ask google ..."
dogestyle
are your neighbors trying to sell you spongebob-themed viagra pills?
Spideyjust11
I fucking wish.
FluffyGreyJedi
"ARRR YE READY KIDS!?"
DarkZalgo
As an "it security person", why? Are they really that bad at their field that they can't secure their own home networks?
NoobsStfu
Lmao "they must be bad, cuz I am 100% certain my skills are superior against, potentially, nation state-level actors with infinite budgets"
lewaq
Nope. Most of the consumer iot products are not built for security - it's a cost a few are willing to pay.
DarkZalgo
Hence the "secure home network" part.
alanrails
I think it's understanding ever-evolving risks and liabilities, but I'll ask.... during polite people hours
DarkZalgo
Well yeah that's why you secure the local network itself, not every device using it.
DarkZalgo
If the network itself is secure, it doesn't matter if your echo dot's username/password is admin/admin or if it's vulnerable to dirty cow
DarkZalgo
Or eternal blue/mikikatz because they'll never get to it anyway.
alanrails
You and the other poster are much smarter than me, I don't work in IT, just with them. I'll ask based on both of your inputs, see what they
strugglesnuggler
The best builders of castles still know to only have one drawbridge.
rbudrick
Nowadays, that's prob a fire hazard.
DarkZalgo
And a secure network would have the extra/shitty drawbridges only connect to each other and empty rooms.
Chereazi
A big reason to use iot devices is that you can control them over the internet. And lots of them want to be accessible trough the 1/
Chereazi
the internet directly. Gonna have a hard time to secure that if the device has a vulnerability. If you want everything 100% local network 2/
Chereazi
only, sure, but then you're usually missing out on lots of options for the devices
DarkZalgo
You just put em on separate virtual networks if you're worried about that. Can't access your other shit if it's on a different network.
jupitermonkey
as an engineer who once worked with iot devices, i wouldn't touch any of my creations with a 20ft pole let alone keep one at my home.
FeralFarter
Lol. Tell me you're a shit engineer without telling me you're shit.
DarkZalgo
I'm also an engineer working on iot devices, and I would if I actually had a use for them. Has nobody commenting on this post heard of
DarkZalgo
Virtual networking or DMZs or VPN services?
jupitermonkey
what good is a dmz if your amazon echo profiles you by listening to you almost 24x7 and send that data to amazon servers over https?
Flexiblewarmth
Can you tell us a scary bedtime story please?
agoodlifeforabi
The Albanian watching you sleep
jupitermonkey
i worked on one device that was meant to be preinstalled in cars and provide constant location info to the manufacturer. this was at a time>
jupitermonkey
when google had newly introduced location tracking on android and some people said hmm lets also track their cars and see where they go and>