Post AdBJQgHsItCYho7eDo by ranx@mastodon.social
(DIR) More posts by ranx@mastodon.social
(DIR) Post #AdBFF7bcVboi8magEK by stux@mstdn.social
2023-12-25T21:26:52Z
1 likes, 1 repeats
Hm, I love Mastodon... β€οΈIt scared the shit out of me when there where toots not from me but I right away knew where to look for the issue!Since Masto has a perfect account access log plus 2FA it was quickly clear the posts came from a 3rd party app so revoking and done!Still, a goooood reminder to clean access tokens, perhaps even for apps not used for a bit π€·
(DIR) Post #AdBFRxf0nRV13oId1s by Heliograph@mastodon.au
2023-12-25T21:28:48Z
0 likes, 0 repeats
@stux phew I 'm so glad you nipped this in the butt right away π π¬ :blobheartraccoon:
(DIR) Post #AdBG0BiF3cwEUK8Afg by asep@toot.community
2023-12-25T21:33:58Z
0 likes, 0 repeats
@stux which 3rd party app is it, do you know?
(DIR) Post #AdBG0ClT9777kceGLA by stux@mstdn.social
2023-12-25T21:34:27Z
0 likes, 0 repeats
@asep Yes, it's "mastochist"
(DIR) Post #AdBG85dDYC4JwdY4rw by avuko@infosec.exchange
2023-12-25T21:36:12Z
0 likes, 1 repeats
@stux for those looking for it:Settings > Account > Authorised Apps.https://<your_instance>/oauth/authorized_applications
(DIR) Post #AdBGEFwE8yFheDNeXA by asep@toot.community
2023-12-25T21:36:34Z
0 likes, 0 repeats
@stux okay yes I saw that mentioned in these toots, I don't think I have that app π
(DIR) Post #AdBGG1CHvAriVajWCW by stux@mstdn.social
2023-12-25T21:36:51Z
0 likes, 0 repeats
But only in the web interface! (browser)Most (if not all) apps do not support this π @avuko
(DIR) Post #AdBGIfoDtkej2jk86C by asep@toot.community
2023-12-25T21:38:30Z
0 likes, 0 repeats
@stux thank you!
(DIR) Post #AdBGJt1GGgeIItQ6Km by kirby@lab.nyanide.com
2023-12-25T21:38:23.432895Z
0 likes, 0 repeats
@stux on pleroma you just click the gear icon and then security and then scrolli am love of plreoema
(DIR) Post #AdBGdeJ0gPigSg94ZU by ranx@mastodon.social
2023-12-25T21:42:43Z
0 likes, 0 repeats
@stux I think this app doesn't exist anymore? wasn't it Fedilab or something at the time? >>><<<MastalabNever used Β· Authorized on Dec 06, 2018
(DIR) Post #AdBGm7Z7mNYVWgir4q by pkreissel@volksverpetzer.social
2023-12-25T21:43:07Z
0 likes, 0 repeats
@stux it should be possible to see on the post which app was used.
(DIR) Post #AdBIlFP9LdZ9SQlgOW by stux@mstdn.social
2023-12-25T22:06:12Z
0 likes, 0 repeats
Another thing to take away from this, not all "hackers" are evil and wanna cause damageDon't get me wrong, hacking is wrong and against the law. But it could have been a looot worse.. instead we got a greeting and a warning what happened, i'll take itIn the past I also wanted to learn the basics of hacking stuff but I always disclosed the breach with proof to the owner/devs(anonymous still) so they could fix the issue. But never caused any damage!I learn and they got a hole fixed for free
(DIR) Post #AdBJQgHsItCYho7eDo by ranx@mastodon.social
2023-12-25T22:13:57Z
0 likes, 0 repeats
@stux because you're a white hat π
(DIR) Post #AdBJXhhnQhPD8AazWC by nus@mstdn.social
2023-12-25T22:14:51Z
0 likes, 0 repeats
@stux usually, hackers are treated pretty judiciously by the law; if they're good enough, then they should switch from black hat to white hat, right?I don't know how I feel about this:https://www.ign.com/articles/gta-6-hacker-sentenced-to-indefinite-imprisonment-in-secure-hospital
(DIR) Post #AdBJgJ6MH8khQhBdIm by stux@mstdn.social
2023-12-25T22:16:51Z
0 likes, 0 repeats
@nus Hackers are kinda artists, at least the white and gray hats I guess :blobcatgiggle: That kind of hacking gets punished very hard but crypto scammers still roam free
(DIR) Post #AdCCGxRh9JpSVL5llQ by NiemPseu@mastodon.nl
2023-12-26T08:28:39Z
0 likes, 0 repeats
@stux I can't remember ever using Masta or ever installed it. How does that work? Had it a different name?