313
Best deals rule (lemmy.blahaj.zone)
submitted 1 year ago by glacier to c/196
all 16 comments
sorted by: hot top controversial new old
[-] don@lemm.ee 32 points 1 year ago

Apps like this and shein are “you pay us to harvest your data, and in return we help you stay poor and pollute the earth.”, just not in so many words.

[-] Catoblepas 11 points 1 year ago

They also have enough bots to compete with those tshirt bots. Fuck, just seeing the name pisses me off.

I hate that it's apparently working for them.

Some people deserve to be oppressed idk

[-] BobbyNevada@discuss.tchncs.de 8 points 1 year ago

I saw this gem last week.

[-] MrMamiya@feddit.de 6 points 1 year ago

They must have a bunch of these to unload because it pops up a lot in the feed.

I just got a pack of 100 unlicensed rock and roll stickers that was worth it for $1.50. Throw in a shoe horn and some silicone rings and you’ve got an order that’s near impossible to mess up. You really want to buy stuff it’s impossible to mess up from Temu.

[-] Lemongrab@lemmy.one 17 points 1 year ago
[-] MrMamiya@feddit.de 1 points 1 year ago

This will not be a popular opinion, and I’m not even sure I hold it, but it’s worth discussing.

If you do something with your phone you don’t want people to know about, you will be caught if anyone cares enough to catch you.

If you are not doing things you don’t want others to know about, perhaps you don’t care who knows what porn you’re into, maybe caring is a waste of energy.

Can a Chinese firm buy your information? If so, you are both missing out on cheap stickers and creating value for the firm that sells that data. You’ve just essentially raised the value of collecting your data in the states, ensuring it will intensify.

[-] Lemongrab@lemmy.one 4 points 1 year ago* (last edited 1 year ago)

These are not targeted attacks. Since they are en mass, they dont increase the worth of your data any no one cares about you in particular.

The same is true for cyberattacks. They are done automatically against targets with suseptability to attacks, which could be lots of personal data or known to not check the validity of the services they trust.

From there it is simple for a hacker to either purchase data from a scammer or attack a service with weak security (like the random dropship spam shop that you have also trusted with your financial data).

TLDR: Protecting yourself doesnt make your data doesnt make it worth more unless you are already a target. In fact, your data is worth more because you show others that you are vulnerable. Trusting a 3rd party with your financial data means trusting that they put the effort to protect against hackers that could compromise the service.

[-] MrMamiya@feddit.de 2 points 1 year ago

Are you suggesting to me that a drop shipper having my fake Apple Pay card number will get breached and a hacker will take the time to reverse engineer that fake data to crack apples algorithm

Or is reality more like they’re gonna buy a data file and use the cards they can crack immediately?

[-] Lemongrab@lemmy.one 2 points 1 year ago

Not just financial, but your physical address (unless you are using a po box, which can still be correlated to you), ip, approx location, local devices, phone unique identifier, browsing habits. I am not going to try and name all the kinds of data collectable, but it is trivial to use data related to your device to hack it.

For your question, most likely if you are not a person of interest then attacks wont be specific to you but against a group. So for the hacker, attacking a wildly popular app to extract the info already available is bettee than individually cracking whatever algorithm was used to hash specific data (unless they already have a piece of it).

An example: A hacker tricks an employee into getting username and password (realistically trivial). They spread their influence till they reach an individual with system privelege. They use the private keys they obtain to decrypt financial and account data. The company doesnt even know they are compromised (often takes them months). Now they have two oppertunities. They can sell the cards in bulk on the black market and sell/use all the data harvested by this invassive app. People make mistakes and with a list of emails they can phish the shit out of everyone using the official corp. templates.

Your data isnt just at risk to the first party who collected it, but also 3rd parties who obtain it, legit or otherwise.

[-] Lemongrab@lemmy.one 3 points 1 year ago* (last edited 1 year ago)

I hope that makes sense. Let me know if there is anything needing clarification.

[-] MrMamiya@feddit.de 2 points 1 year ago

Interesting. Did you know you can find my address by looking up property records? It’s free, anyone can do it. You can see how much my house cost, how much taxes I pay, etc.

Did you know you could look up Name, Phone Number, Address, Criminal History, Convictions, and Court Cases involving the individual searched using a license plate number?

I really do appreciate the explanation. I really don’t feel scared. For what it’s worth I used hide my email and a vpn. I guess if I am ever important I will have to consider more. As it stands, everyone already knows what I’m up to, I use google services.

Equifax. I know you know what I’m talking about. Why should I give a shit if I’m gonna be exposed by the stewards supposedly safeguarding my most sensitive info anyway?

[-] thySatannic@beehaw.org 3 points 1 year ago

Oh so that’s the company that has been spamming my email lately!

[-] Xelnoc 3 points 1 year ago

weezer - raditude

this post was submitted on 30 Nov 2023
313 points (100.0% liked)

196

16744 readers
1781 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 2 years ago
MODERATORS