replies(1):
https://blog.smithsecurity.biz/hacking-the-scammers
https://blog.smithsecurity.biz/systematic-destruction-hackin...
Oh, they 100% can. There's a US Constitution thing allowing them to comment on things. They just chose not to comment because they don't want to.
This should not be possible. I guess the iMessage scams used e2ee, but the SMS scams should have been caught. It would be great if there was law enforcement that competently handled cybercrime, or at least triaged it.
More broadly, and at the risk of creating another TLA, the US needs a Blue Team version of the NSA. In other words, identify critical infrastructure, figure out how it can be hacked, and require that companies fix the issues. Use national security if need be. Banks have to undergo stress tests to prove they are solvent, there is no reason that critical infrastructure should be able to leave their doors unlocked.
>It would be great if there was law enforcement that competently handled cybercrime, or at least triaged it. [emphasis mine]
I'm not sure CISA fits that definition.
[1] https://www.cisa.gov/news-events/news/looking-back-chart-our...
> The creator is a current computer science student in China who is using the skills he's learning to make a pretty penny on the side.
I don't the US gov is gonna go after him for hacking a scam group AND he provided details to the authorities. Now, if he hacked them and used the stolen credit card details? Who knows.
You know what? I do. We all should. These scammers are awful people and deserve to be attacked. I am tired of toothless authorities like CISA and the alphabet agencies in the US doing next to nothing about it unless some YouTube scam baiter does the work for them. Scammers destroy people, not just financially, but emotionally as well, even driving some victims to suicide. As far as I am concerned, any wannabe hacker out there should be using these scammers for target practice.
I think we all agree that hacking scammers is a net positive for society.
The US has roughly 340 million people now.
The US gdp is roughly 28 trillion dollars.
Which means that on average the dollar value per citizen is roughly 82 thousand dollars…
Divided by days in year, hours and minutes its roughly 15 cents per minute.
So if we assume 100% of the population is getting at least one scam a day of some sort and that the disruption to thought to get back on track as result of the anger induced is about 30 minutes…
That puts the loss to the US at little over 1.5 trillion dollars in lost productivity.
The US currently spends roughly 840 billion on defense…
So almost twice the yearly national defense budget is potentially lost to scams.
Seems crazy, as I said off the cuff. I would love to see some way more accurate numbers.
But arguing in dollar amounts I think will go a long way to putting the problem in perspective. And who knows, maybe we’ll get to some drone strikes on scammers in our lifetime.
I remember during Covid there was a few startups in that space trying to work with MVNO’s to get a foothold in the market, but don’t think any of that went anywhere.
"wangduoyu666!.+-"
Whoops, this looks like username -> wangduoyu666 (same for "wangduoyu8", "wdy666666". Seems like they're incrementing numbers in username too, but probably false positives, maybe popular username)
Google it. Probably skid's github, linkedin, etc. (not verified)
And looks like OP missed this. Also name on telegram is fake of course, Wang Duo Yu is singer in China, so skid is using singer's name as username and also as a full name in Telegram.
Ps.: From their backup telegram, also "wangduoyu12"
Ps2: From OP write up -> https://t.me/wangduoyu0 -> there is youtube channel https://www.youtube.com/@duoyuwang4820 which links in description to this telegram channel wangduoyu0
And it's full of videos of someone making tutorials to bypass china firewall? etc. Multiple 30min-1hour videos, there must be treasure trove of info. Videos is leaking these gmail accounts: https://i.imgur.com/LUiKbF6.png
People here will lament about the exploited H1Bs causing literal genocides at Meta until the cows come home, but literally other any person working a job they don’t necessarily like and in a living situation that’s undoubtedly worse deserve to be literally bombed because they sent you a text message.
Jesus Christ.
> ... lured to countries through fake job adverts but are instead forced to work in scam call centers, pushing cryptocurrency investments, as well as work-from-home, lottery, romance, and online gambling scams. All this, while being subject to "abject abuse."
> A report from Interpol from earlier this year said victims are also subjected to extortion via debt bondage, beatings, sexual exploitation ...
https://www.theregister.com/2023/12/08/human_trafficking_for...
and:
https://www.reuters.com/world/asia-pacific/hundreds-thousand...
Is Musk a scammer? Bitcoin? The commission Apple charges on the App Store? The Fortnight monetisation system? Facebook's claim to be able to accurately target adverts? Vaccines and masks? OpenAI?
People on this website have said so about each of those examples.
That is why it's bad to go down that path.
And this doesn't qualify for special forces. It's "just" some people losing some money.
I find it hard to believe if some scammer is hacked and the evidence shows the hacker learned everything from solely this video then this disclaimer won’t mean anything legally.
I think disclaimers are just a bit of noise that people put in out of an abundance of caution.
Anarcho-tyranny
A stage of governmental dysfunction in which the state is anarchically hopeless at coping with large matters but ruthlessly tyrannical in the enforcement of small ones
https://m.wikidata.org/wiki/Q64594123
Then you get your door kicked in for not paying taxes on $50 venmo transaction, or saying the wrong thing online but when there is a school shooter (or presidential assassin) the cops wait for them to finish while they play with their phones.
Until the REAL scammers are brought down, people will take actions into their own hands.
If the question's answer was obvious and resolving false then none would have been described thusly, if it was obvious and resolving true then you wouldn't be denying it.
Merely asserting that they are not, in your opinion (though hey, look at those legal cases they have between them…) does nothing to remove the fact that they have been called this.
It also does nothing to help with the lack of legitimacy of vigilantes. Nor, in this case, jurisdiction: part of the problem here is international cooperation, because right now the USA (where the victim is) and China (where the gang is) are a bit chilly towards each other.
> people will take actions into their own hands.
Amateurs sending a bomb their way? That's one way to describe how WW1 started.
At least some disclaimers aren't just noise—they add context that would otherwise be missing to help the reader navigate the subtext. The "this is not my work" portion of that disclaimer is highly relevant and useful information for interpreting the blog. The afformentioned IANAL disclaimer helps readers to understand whether your opinion has any stronger basis in law than their own.
I also strongly suspect that some disclaimers would have legal value in the event of someone misusing information being dispensed, but IANAL.
Let's say that's more than just individual morality but a concrete cultural relation to wealth, power, justice and social contract of the state.
On the other hand, the examples people commonly share of where someone contacts a knowing scammer to appeal to their humanity, is that the scammers laugh at their victims — so if the people on the phone are the villains, then I think them hanging up immediately may cause more emotional pain than the stream of expletives they're used to.
Regardless, it saves me time.
This approach may not be so useful now that GenAI, both LLMs and synthetic voices, are getting good.
They are getting REALLY good, it is the old "it is photoshopped" except with sound. The problem though is not being able to differentiate, especially not the people scammers usually target (the elderly).
You cannot believe your own eyes AND ears now, sadly. It might sound dramatic, but it takes "trust no one and nothing" to a whole new level.
Even were I a lawyer, it should carry the same weight. Some random, kind internet stranger sharing ideas.
I think it distracts from the conversation as I wasn’t giving legal advice but just thinking about how useful and relevant disclaimers are.
The comment is more about too much bullshit language used in our lives, so I think minimizing (or at least intending and attempting to) bullshit in my own comments is something I can control.
We have all received email from a legitimate place where a scammer uses your email to spam and then legitimate company thinks your email sent it.
Safe to assume everyone else is not a lawyer.
Vigilante’s don’t abide by the laws so aren’t well positioned to dispense justice in a non hypocritical way.
Maybe carve out a low level clearance that gives grey hat types a little room for counter red team activity.
Like if I fly from China to US and offer you a bridge in exchange for $20 and take the $20 and don't give you a bridge, it's a scam.
What's the difference between that and doing it online? The offer is still posed on US soil; if anything it should expose you to the legality of both countries.
And, to the topic at hand: if lawyers consistently do that, that again speaks to the legal value of at least some disclaimers.
Most of the time this won't matter. People and courts generally know advice isn't to be trusted, if this goes to court it will probably be laughed out before they even see your disclaimer. However since there is trusted advice on the internet and courts/the law hasn't figured out where there is always risk and a disclaimer helps protect you against the court deciding you were playing an expert.
Of course I'm not a lawyer, I'm only guessing as to what will happen. I'm reasonably sure no lawyer will comment on this for reasons above.
Several years ago when I still had a Facebook account there was a guy that DMed me yelling at me and accusing me of trying to “hack him”. His evidence? The reverse DNS record for a server was pointing to a domain I owned. I replied and told him the reverse record was out of date. I had previously rented a VPS with that IP address and I had had the reverse record point to my domain. I had since cancelled the rental of that VPS and now the hosting company had assigned the IP to someone else. Apparently the hosting company had not bothered to remove the reverse DNS record from their systems so it was still pointing to my domain. The guy that was yelling at me was of course too stupid to understand this when I explained it to him so I gave up on trying to educate him and blocked him from being able to send me any more DMs.
Now imagine if this guy had started a full-on retaliation campaign based on his misguided “evidence”. Luckily for me I never heard or seen from him again.
But yeah, that kind of thing is exactly why “vigilante justice” is such an incredibly dangerous and stupid idea.
They do. There's just a lot of it.
Technically the US can start a war with China, which could reach the point of the US military capturing me and bringing me to the US thus ensuring I don't get away wit it. Realistically that isn't happening though. There are also trade-war options which sometimes happen in high profile cases, but often they are seen as losing more than gained.
Note that most countries will arrest me and send me to the US if presented evidence. If you used France as your example country and so I'm exposed the the legality of both countries. Russia and North Korea are most well noted as protecting their own people against crimes like this committed elsewhere, so if you can get protection from those countries for this crime it isn't a crime because nothing will happen (war of course is an option but it seems unlikely). China is a grey area - they sometimes protect their own, but often they will not, in general for this scam I'd expect they would arrest you for this scam, but not all of them.
Some of them are being held prisoner and are being forced to run these scams under threat of torture. There was a Search Engine episode about this in the last year.
It is, at least hypothetically, possible to define "scammer" clearly enough that the more egregious and clear-cut types are taken care of more expeditiously.
Not sure if there's a way to actually enforce that better, but "it is possible to disagree over whether some things are scams" is not the same as "there's no way to agree on whether anything is a scam".
He identifies the culprits in detail, scares the hell out of them, reports them to police, and tries to inform / refund the victims. In at least one video, he accesses the scammer's Stripe account and refunds the victims (often elderly) for their payments on bogus IT security products. I recall another video where gains access to the CCTV in the scammer's office building, and captures a police raid on the scammers.
https://www.npr.org/2024/05/31/1197959218/fbi-phone-company-...
Most of them are quite capable of delivering a nasty counterattack. Some, IRL.
Had a friend hack a spammer that hijacked his server, and they blasted his server into LEO.
I won't link to it, because he seems to piss some of the folks, hereabouts, off.
If they are in Russia or North Korea there is nothing the US can do (other than CIA or military operations) and so the scammers will get away with it.
I'm speechless that they were able to reach that number of victims without consequences. Reeks of a lack of oversight, will, power or coordination on behalf of the investigators. I wonder which reasons they give.
Gifting a bit of existential fear to those scammers might not hurt, since they force it on thousands of others.
But yeah, i don't know, maybe we need a new word for such criminals. The superlative for murderers is "mass murderers". "Mass scammers?"
What happens is scammers get numbers with small carriers who interconnect with major ones. Eventually the reputable carriers notice spam from these smaller carriers and start dropping their calls (or banning them altogether). So the smaller carriers decide whether they want to see their legitimate traffic dropped or just ban the offending users (which is eventually what ends up happening). Scammers end up hopping to a different carrier so it's a cat-and-mouse game, but it's a lot more expensive to play now than it was with simple number spoofing.
In parallel, numbers are starting to get reputations attached to them, similar to IP addresses. Some filtering takes advantage of that.
Of course, spearfishing can continue unimpeded with someone buying a prepaid cell phone and using that to call a specific target. :(
https://transnexus.com/whitepapers/understanding-stir-shaken...
Up until very recently, caller ID was stupid easy to spoof if the originating phone company didn't care.
It doesn't make it legal though; it just means you aren't arrested. The DoJ may still issue indictments [1].
[1]: https://www.google.com/search?q=doj+warrents+for+russian+hac...
So for example some GRU agents came to the UK and attempted to murder a couple of Russian expats using a nerve agent called Novichok[2]. As well as the original targets, three further people were poisoned and had to be hospitalised, one of whom died.
Unsurprisingly perhaps Russia won't extradite their millitary intelligence officers back to the UK to face justice. This doesn't change the fact that murder and attempted murder are definitely illegal in the UK.
[1] https://www.cfr.org/backgrounder/what-extradition
[2] https://en.wikipedia.org/wiki/Poisoning_of_Sergei_and_Yulia_...
I expect that, at some point in my lifetime, bio-printing and tissue culture will probably reach the point we can't even have trust in real life, not even with fingerprints and a DNA test.
Will this happen before or after we become post-scarcity? I don't know.
https://i.imgur.com/zJsbJZ5.png
Heh, in the newest video he basically shows how to setup the BT5 panel and fake website from the writeup :)
https://www.youtube.com/watch?v=2fdmVsqeQ1Q
All info I've gathered from videos:
Knjfatemaa@gmail.com (Cloudflare account)
Username in Mac: wenziguo
Telegram @DockerWang
gentleman.yu2013@gmail.com
yuzhiwen2017@gmail.com
wangtian1888@gmail.com
tangzhongwei1993@gmail.com
beegoservice2012@gmail.com
In this specific case, when it comes to vigilantes in particular? Then no. I think that a society which allows it will end up somewhere between lynching and anarchy.
Better law enforcement, which does not even have to mean "more laws"? Good. Batman wannabes? Bad.
Let's go with your "one scam a day". The person then has to see it, choose to read it and then act on it (delete/ignore/get scammed). Not even considering the practical effects of receiving 4 before lunch, and none getting past spam filters the rest of the week.
Then you come up with 30 minutes for each individual scam? If it evens goes trough the above mentioned phases, nobody is non-profitable for a full 30 minutes, for every scam attempt, every single day of the year.
Using your 15 cents per minute, we could stick with just a minute of lost value. That translates into 340 000 000 * $0.15 * 365 days = 18 billion.
Still a totaly useless number because it's impossible to measure, but at least much further from 'ridiculous' than 10% of the GDP you came up with.
How in the hell do we not have a trivial "report a scam" option on phone calls and text messages? Which reports it to the FTC or FBI or something?
Crowd strike immediately pushed a fix for the problem once they realized what happened. No, that didn't prevent the global economic costs and general chaos that was caused. But they clearly weren't deliberately trying to cause all that damage.
In other words, a scam towards the reader?
If you cut corners while still being wildly profitable it's negligent at best.
I always thought there should be a driver license and test to use the Internet to cut down on people being ignorant. As well or a class you must pass in high school that teaches ignore all phone calls, text, emails and etc from people you have not met offline. If you do meet them online make them snap or facetime you fairly quickly to verify veracity.
Society is supposed to take an active role, but sometimes they have other priorities.
Big companies getting hacked or scammed make headlines and generate FBI action. People like me, not so much.
“https://www.npr.org/2024/08/08/nx-s1-5058798/how-criminal-sy...
Audio and transcript.
Like the previous commenter points out, actual lawyers are quite clear that their statements in this kind of non-professional capacity hold no more weight than any other random Joe. There is no situation of authority. IANAL/IAAL may have once been a funny meme – albeit one quite tired at this point – but doesn't add anything, and may be a detractor if one falls prey to the logically fallacy it potentially introduces.
With your bridge example different countries and jurisdictions could have different requirements for the purchase of real estate or that you even were buying real estate rather than like an NFT, toy model, etc. A scam in the US might not be considered a scam in a foreign jurisdiction and even within the US it might not be considered a scam, like if someone offers you a quit claim deed for whatever interests they have in a bridge for $20 that could be considered legal depending on what representations were made. In fact a person buying a quit claim deed for way below market value could find themselves in hot water being investigated for like elder abuse with them being seen as the one trying to pull a scam on a potentially vulnerable property owner.
The stuff he says before the main story, tends to be quite political, but the main story, itself, is often apolitical.
In absence of a government willing or able to enforce laws, vigilantism creates a public pressure to fix the government. Either way though, people are entitled to justice. If the government doesn't provide it, then the government is responsible for the harmful consequence of the resulting vigilantism.
I mean, it's validly been 25 years since I received my first scam text and I still sporadically get them once in a while.
Of course, when the state demonstrates a dereliction of duty and becomes feckless in its ability to punish criminals in proportion to their crimes, this creates outrage and a strong temptation to engage in vigilatism. The state then shares responsibility for the resulting vigilatism.
The very fact that he didn't hangup, that he felt he had to explain away his guilt to me (a few times) shows that he himself wasn't convinced of his rationalization and that he himself believed he was doing something wrong. I can only hope that the guilt gnawed its way into his conscious and that the worm that never dies led him to rethink his life and to pick up some honest work.
May the guilty lose sleep, and may their ill-gotten goods taste of ash, and thus be led to remorse and reform and the righteous path. This is love of neighbor.
There are other forms of punishment besides jail time. But really I'm more concerned that the scam organization is shut down, even if the main scammer isn't put behind bars. If nothing else, it'll slow down and reduce the scams.
Red light ticket revenue funding small town budgets is another. Brake-light rationales for traffic stops…I could go on.
The key is what you pointed out, that these are never used against the elite class.
I would have loved to ask him if he'd do business with Stormfront or ISIS as long as they were "paying their bills." It's not just the top of the food chain, these middle managers are all morally bankrupt, too.
As an aside, it's terrifying that our texts can just be read and mass processed like this.
I'm sure, in the general sense, this information isn't used for evil. But certainly I think it can be, like those Ring Doorbell employees who used their access to stalk their victims.
The case for secure messaging services only grows stronger, even for the innocent.
These days they are mostly political pleas, which are, ironically, in some semi-protected gray area. Haven’t noticed any USPS-related ones lately, but a few have gotten through in the last few months.
John Oliver: Pig butchering scam.
So making reporting easier is good only if you already have atleast sufficient resources to process and follow up on the current report volume. My understanding is that we don't currently have enough resources dedicated to handling the reports we do get of people who got scammed. If that is the case, then making it easier to report potential scams doesn't help until we increase the resources for tracking down and stopping scammers.
There’s no honor amongst thieves.
> The "essential predicate" is "that a punishment must not by its severity be degrading to human dignity", especially torture.
> "A severe punishment that is obviously inflicted in wholly arbitrary fashion." (Furman v. Georgia temporarily suspended capital punishment for this reason.)
> "A severe punishment that is clearly and totally rejected throughout society."
> "A severe punishment that is patently unnecessary."
I'm quite aware that not everyone is on the same page, and this just helps to indicate a basic respect for others that may not like him.
As you can see, that didn't actually work, as just the mention of his name, got a ding.
As before, it used to be a funny meme – albeit one that has become tired – but there is no significance to it. Who the person is tells absolutely nothing about the rest of the comment.
(For example, if your idea of self-defense starts with 'I'll be following someone around in my truck...', most other countries would let you hang.)
Its still not quite accurate to deem vigilantes as criminals though. Unless they've been charged and convicted they aren't technically a criminal.
Given that we're talking about legal, rather than extra judicial, pursuit and punishment I would expect jail to be a part of that process.
Also literal slaves working together, even if you'd not call it a union: https://en.wikipedia.org/wiki/Haitian_Revolution
There's a strong argument right here for teaching technology ethics as part of a typical CS curriculum. I'm not saying that would have stopped this student from making his own unethical choices, but it does highlight the fact that we equip people with these really powerful technical skills, but we don't even try to equip them with the ethics to be responsible about it. We just sort of hope they were raised right, I guess.
Anyone here have experience with a curriculum that includes the ethics aspect?
Readers may want to read all of them of course.
Seems it's no longer active. If I send "Y", the message is not delivered. The domain points to 404 on a "King Ice" website selling jewelry shaped like guns or penises, I'm not joking.
https://www.scu.edu/ethics/about-the-center/center-news/inte...
I believe that's actually very rare. I mean instances in which country A extraditing to country B one of its own citizens (who isn't also a dual citizen of B). In the most common scenario, country A extradites a citizen of B back to B, or (less common) a citizen of some 3rd country C to B.
I couldn't find a single instance in which a US citizen was extradited from American soil to a foreign country, for example, even though this is permitted by the extradition treaties. (I welcome any pointers to actual instances)
Foreign countries sometimes extradite their own citizens to the US, but I believe that to be very rare. Even the case of Gary McKinnon [1] was ultimately blocked, for example.
We explicitly learned about voht IEEE and ACM code of ethics for example (though this was not the only thing we discussed) . We were even tested on the difference. I'm always confused when people don't even get the baseline ethics training.
But think about "IRL crime". Would we condone someone pulling out their gun and going after someone who they believed had stolen from them? I hope not.
The problems are the usual ones with vigilantism: ensuring a proportionate response to the alleged crime is impossible (vigilantism usually has a large emotional component, so good luck restraining someone there), and ensuring the vigilante is actually going after the right person, and hasn't screwed up their investigation, causing them to target someone innocent.
Certainly holding law enforcement accountable is difficult and sometimes impossible. But at least there's a process to fix that, and people are constantly working on this problem. There's no process to fix cases where randos botch an amateur investigation and mess up the life of someone innocent.
Not true (not as a matter of principle). There was a high profile case in which murder suspects who fled from Japan back to China were caught & executed.[1]
[1] https://zh.wikipedia.org/wiki/%E7%A6%8F%E5%86%88%E7%81%AD%E9...
Not sure why that's "ironic". Seems reasonable. Only people trained and accountable should be doing things that would violate people's civil rights and take away their freedom or possessions.
Obviously the reality of our legal systems fall far short of ideal, but IMO vigilantism is not the answer to that.
> Its still not quite accurate to deem vigilantes as criminals though. Unless they've been charged and convicted they aren't technically a criminal.
You sound like the kind of kid who would put their hand an inch from their sibling's face and constantly utter "not touching! still not touching!" and think that you were "technically" not breaking the rules, so your behavior was ok.
If you have a problem with that, maybe it shouldn't be on the books.
There's no such thing as a "natural right". Rights are granted, not innate. In the US we might think freedom of speech is a "natural right", but go to a country that doesn't have that, and you'll see how "natural" it really is. (And hell, even in the US, free speech rights are curtailed all the time.)
> IF the government abdicates its assumed responsibility to provide justice people have every moral and ethical right to enact justice themselves.
I don't agree with that. Look at how (for example) the 1800s in the US west looked when it came to so-called "justice", when the government wouldn't or couldn't prevent or track all that much crime. That's not a world I want to experience.
And not that I have not denied the negative consequences of vigilantism for society as a whole. Those consequences are the reason governments are supposed to seek justice in a more orderly and accountable manner. It is when governments renege on that responsibility that they bare the blame for the consequences, as people seek justice on their own (because they know justice is their right and will seek it themselves if nobody else will for them. This innate understanding of being entitled to justice is the proof that a natural right to justice does exist.)
Maybe ironic wasn't a great fit there, I stand by the rest of the comment though. I blame Alanis Morissette for my inability to recognize irony accurately.
> You sound like the kind of kid who would put their hand an inch from their sibling's face and constantly utter "not touching! still not touching!" and think that you were "technically" not breaking the rules, so your behavior was ok.
There's a legal definition of "criminal". Is it being an annoying little brother to think definitions are important?
That has to do with fear, not ethics; the consequences of getting caught doing this to Chinese (vs foreigners) are significantly high (you do not f*k around with a system that has no due process)
Krebs gets SWATted.
This is not at all what "I'm not your lawyer" means—that's a disclaimer to say that they're not taking legal liability for their advice to you because you're not paying them. They're still far more qualified than I am to talk about law in the abstract and dismissing that as "appeal to authority" is a false appeal to egalitarianism.
There was also an ethics module in one of the massive pre-weed out 100 level courses.
While they have the capacity to be more qualified to talk about the law, that does not imply that they will choose to exercise those qualifications. Lawyers can be trolls just like everyone else.
The work must stand on its own. If it is of high quality, then it is of high quality. It does not matter who wrote it. If an infinite number of monkeys wrote it, it is still of equal value.
The person is irrelevant.
Suddenly I realized even dumping passwords was an invasion of privacy, even if I didn't use them. And that passwords should never contain sensitive information!
This would decrease their profit per-item by 1/2.
Key piece tho, are you able to return pre-sorted mail to sender?
Actually...
Doesn't it now take a significant amount of effort to get a valid company e-mail whitelisted by the incumbents exactly because of this and yet I have received multiple emails today about diplomatic correspondence...
In the end, ethics courses only teach you to be conscious about your actions and learning how to convince others that you're ethical. An ethical person can easily pass an ethics exam. All of that knowledge, and being raised by good parents, do not completely prevent someone from becoming a criminal.
If you can set up a reasonably successful scamming business on your own as a student, you can earn enough money to move to the countryside and never need to work another day in your life, as long as you can manage to hide the money from the authorities. Or you can spend it all on drugs and other short-lives pleasures, like so many criminals do.
Cybercrime targeting vulnerable people is laughably easy and extremely lucrative. Hearing about how hard some people's lives are because of their student loans, I'm a little surprised this stuff doesn't happen more, really, especially with the growing resentment the younger generations seem to feel for the bad hand they've been dealt by the older generations.
I'm sure, in the general sense, this information isn't used for evil.
Maybe. I do know there have been cases of people bribing lower tier support in wireless providers to do SIM swapping. I don't know how often this occurs or how often they get caught. Things are logged but someone would have to know to look at the logs. I've also heard that employee churn is high in support so they might be long gone by the time anyone looks.
The only solution I can think of would be to get rid of all the SS7 to mapi gateways and force all cell phones to use internet based secure routing over RCS or preferably something better and also ensure that phones are not allowed to do spell check over the wireless carrier VPN. That would be a world wide project and requires cooperation from every nation. Either that or make specific countries walled gardens blocking all SS7 messaging and just accepting some things will break. I fully support breaking things that are already fundamentally broken. I would personally prefer direct phone to phone true E2EE taking the carriers, Apple and Google out of the picture even if there is some friction. It should be a physical phone-to-phone sync of sorts so you smack each others cell phones together, high five, do the hokey pokey and now you are E2EE with no layer 7 servers in the middle instead talking to a L4 VPN router that only knows how to connect one VPN to another over UDP. Everything else performed entirely by the phones using a different encryption cipher, hash, key, etc... Maybe using QUIC. For people that can't tap phones together maybe a fallback option for QR codes over video chat so you know you are syncing with someone you know, AI fakes excluded.
I meant to say "the vigilantes" not "we vigilantes." I don't take part in it and don't condone it as long as we collectively agree to live under a legal system.
I agree with you though, vigilantes are imposing "justice" on innocent people. The right to a fair trial and a jury of your peers is a really important check on power. Vigilantes skip that whole process.
https://www.paperkarma.com/product/paperkarma-subscription/
> Mail Withheld From Delivery. An addressee may request his or her postmaster, in writing, to withhold from delivery for a period not exceeding 2 years any foreign letter or printed matter bearing a specified name or address appearing on the outside. Such mail is marked “Refused” by the Post Office™ and treated as undeliverable.
https://about.usps.com/what/business-services/delivery-growt...
I assume the point is “there is no economic incentive to fix the situation” … but that is an extremely generic claim.
I'm glad you broke free eventually :-)
> even when the controller is not there
That's good to know, don't think I knew about that
What's freaky is I just got a package through the post office a few days before. These guys are maybe accessing package tracking tools looking for phone numbers. I would expect that's not heavily secured data.
Edit: I reported the domain to the registrar and they took it down.
That's a myth based on a study that stopped studying brain development at age 25. If they'd kept going, we might have learned that the brain is constantly changing, and 25 is no more or less arbitrary than 18, 16, or 48.
https://www.sciencefocus.com/comment/brain-myth-25-developme...
> It could be a misunderstanding, stemming from brain scanning studies which looked at subjects up to the age of 25. But that’s like saying sprinters can only run 100 metres at most after watching the 100m final at the Olympics. The limit is imposed by the context, not biology.
The “E2EE marketing” around RCS applies solely to messages sent between Google Android devices on both sides. Otherwise, RCS is plain text like SMS. The carrier can read it all. This includes Apple’s implementation.
All of these things give people a sense they have been abandoned by a derelict state and must meet violence with violence, power with power. That's profitable for an "insecurity industry" that thrives on fear, but devastating to societal wellbeing.
Innocent people in jail, or for controversial reasons, seems like its own issue entirely.
Like the way too common attitude on this site rbat because some people are smart/resourceful enough not to be victimized, that somehow makes victims deserving for not being so fortunate.
Why would anyone but a scammer/criminal want such a society to even exist. I'll go so far as to compare to to the holocaust, that somehow it's fine as long as they're not coming for you?
"First they came for the vulnerable..."
Some cultures have a very strong "if you can scam someone and get away with it, you'd be a fool not to" mentality, often combined with the mindset that you should do everything in your power to improve your life, and that you're living in a constant state of scarcity - so if any opportunity pops up, you'd better take it.
And if it's some random faceless person on the other side of the world, even better.
In most EU countries you cannot use "more offensive" force than robber/raper uses. And you cannot use firearms in any case.
It is bizarre concept for me: I need to fight with bare hands better than robber, as I cannot use knife if robber doesn't have a knife. Same for knife-to-knife fight, as firearm is no-no in any case. I'm not as young and agile as typical robber, and I cannot have any "technical" advantage over him. If it is question of your personal belongings you better give everything and report to insurance company (as if any belongings could be replaced with their price!)
Again, I don't say it is in every EU country, but EU bureaucrats try to force more "liberal" countries (as Czech or Bulgaria) to adopt "common" (very strict) rules.
However, my comment was meant to teach about the parsing and use of language and antecedent references, not commentary on the semantics of the real world.
So yes, if you know someone who is a victim in a controlling relationship, then gently speak truth to them, don't push too hard, but be ready to give them meaningful help as soon as they come to their senses and ask for it.
I find when I can send feedback in a way that captures enough context that the resulting bugs are very high quality.
If I could report a call from a scammer in such a way that the investigator heard the entire conversation...? I think that would be incredibly damning.
Because it isn't a system so much as a kafka-esque nightmare.
Vigilantism is always a symptom of far greater problems, people don't do it just for fun and to cosplay as Batman.
