Post Ac25R6GKm7CAco5duS by Anniiii@gts.ferreo.dev
 (DIR) More posts by Anniiii@gts.ferreo.dev
 (DIR) Post #Ac24ymqRNMh0IHTgOW by stefano@mastodon.bsd.cafe
       2023-11-21T13:27:48Z
       
       0 likes, 0 repeats
       
       Just received yet another email from a company claiming to do a "Security report" on a client's institutional website (no user interaction whatsoever). They're pointing out some supposed serious issues, namely the lack of HTTP to HTTPS redirect and the use of a self-signed certificate. They're urging immediate action to prevent "serious security problems." It's a pity that the site has always had redirects in place and uses Let's Encrypt certificates. A few years ago, everyone wanted to be "SEO consultants," even if they couldn't tell a blog from an e-commerce site. Nowadays, it seems like everyone's a security expert, but from what I can see, they can't even input an address into an automated tool. 😅 #Security #Website #SEO #LetsEncrypt #Infosec #IT #SysAdmin
       
 (DIR) Post #Ac25R6GKm7CAco5duS by Anniiii@gts.ferreo.dev
       2023-11-21T13:32:55Z
       
       0 likes, 0 repeats
       
       @stefano How do you even.. like.. did they just audit a different website? Ok come on, please tell me this is some weird joke, or at the very minimum they didn't charge your client for *that*
       
 (DIR) Post #Ac25oHeSb3KmblQhWK by stefano@mastodon.bsd.cafe
       2023-11-21T13:37:08Z
       
       0 likes, 0 repeats
       
       @Anniiii I wish it was a joke...worse than that, the client of my client is a company doing those tests, and they tested their own website. So they couldn't even understand the test wasn't correct, looking at their website...
       
 (DIR) Post #Ac28G20kXbEU7IDLQ8 by Anniiii@gts.ferreo.dev
       2023-11-21T14:04:32Z
       
       0 likes, 1 repeats
       
       @stefano I feel so sorry for whoever is unfortunate enough to be these scammers victims. (yes, I refuse to call this kind of actions anything but a scam)