Is it possible that this password was really your gf’s password in the past ? It could have leaked long ago and the hacker just decided to use a previously leaked pass to be more inconspicuous.

I don’t think this whole story is so wild, it could be just coincidental. The hacker knew somehow about her DOB and thought this would be an easy password.

Rest assured a hacker wouldn’t want to use their own password or reuse even one as that could link to previous nefarious activity. So they had to set up a brand new password just to move forward. So they set up anything personal they could get their hands on.

PS: you should check haveIbeenPwned for the address of your gf.

Also as DDG is based in the US it is most likely legally bound to give your informations to any agency with a nice gag order on top of it.

I can’t imagine any serious privacy oriented business to be headquartered in the US.

The whole better privacy is true with DDG but certainly not to the extent people would like to think.

That being said DDG has decent search results and is slightly better than Google for privacy. Google is an ecosystem so every little bit you don’t give them is a success.

It’s really too bad we don’t have good private search engines…

Fuck this.

There will be literally ads everywhere soon.

Ads in the street, on TV, on the radio, in magazines, on the internet, in games (including in VR)…

It’s a nightmare it will be completely impossible to go through one minute of your life without being sold something.

It’s not really something new but it saddens me because gaming was one of the few space that was mostly spared by advertisers. One of the last place you could get out of your reality for a little while.

Now this is over. Just like Netflix people will go up in arms against ads and then still get Free2Play games showing ads and normalize that practice.

A long time ago I used a CLI download manager that could download from different mirrors at the same time.

I think it was a tool called axel and it worked very well.

The EU can’t even pay for fediverse servers?

(•_•)

Why using crypto for the donations? Why XMR in particular?

Great acting honestly.

Conan was probably suffering a lot from that last dab… Even the host seemed a bit concerned by the amount of sauce on the last wings.

One of the best episodes for sure.

This guy birds.

Why not both ?

I’m sure a thin layer of gravel will soften the landing.

That but grabbing both legs.

Jumping very high beforehand is recommended.

By dropping silently I meant really litteraly. If you answer to SMTP commands, you are not silent. You essentially say a spammer server that you are a valid target and that they can go on.

It’s not even a question if spammer buy domains to spam. It’s well known and the reason why commercial products provides a feature to filter too fresh domains.

There are procedures to “warm-up” an IP if you are a large provider and if you don’t do it and attempt to send a lot of mails to Gmail this will not work. It’s not just about DNS records. You could have donne everything perfectly DNS wise and still be blocked by Gmail servers.

You should take a look at the requirements of Gmail for large providers. As far as I recall Gmail does check FcrDNS since last month. On top of more requirements for authentication.

Still you can’t just buy an IP, a server, set MX, SPF, DKIM, DMARC, ARC?, FcrDNS and expect large amounts of mail to go through right away.

And again, any communication method will have a spam problem

The major issue here is that anybody can send any email to whoever. Most communication apps won’t let you do that certainly not like emails.

You can’t open WhatsApp and start spamming the whole world. You basically can only do that with phone calls and emails ?

So no, SMTP/IMF has rotten foundations. No matter how many (optional) protocol you add on top, it will always be such an hassle to maintain and there will be always people who can’t afford that much effort.

Small businesses having to set that up just to reach Gmail is a big problem that they usually externalize with Outlook365 and so on.

Again, Gmail calls the shots because they are the leader. But on paper my fully unauthenticated mail from Barack.obama is perfectly RFC compliant and legit. These protocols that are essential are optional at the end of the day. They became virtually mandatory because of the spam issue and Gmail pushing in the (right) direction because they have leverage.

SMTP on its own is trash.

It sounds like your problem is with the way providers handle email and not email itself.

No. Providers handle mail this way because they have no choice to do so.

You are stuck between two major Issues.

On one hand you can have your anti-spam very lenient and receive pretty much everything. But if you do you will get more phishing and malware ridden mails. So the users will be exposed to one of the most dangerous vector of infection.

On the other hand you can have a super aggressive spam filter but some mail will be dropped. Whether an email notifications or the contract of the year for a business. It’s no matter. It might never be delivered.

And since we have to block millions of spam mail everyday we have to block them silently because if you respond to certain malicious SMTP server online they will just spam you.

In reality businesses are used to email so that’s what is commonly used.

But it’s far too unreliable to communicate with clients of that business. You can’t just have an important contract sent as an attachment by mail with some chance that it will be silently dropped at some point.

The simple fact that you can send an information to someone by email and it might be silently dropped without you ever being aware of it should IMO have led to the conclusion that it should never be used for anything remotely critical.

If it’s important it shouldn’t be an email. The reality is millions of dollars worth of business conducted solely through email conversations. And also a very lucrative business of spam.

Even businesses are often spammers or as they may call it “gray mail”.

No email providers will guarantee you a 0% fault spam filtering.

Not Gmail either.

As much as I hate Gmail, at least they are pushing for everyone being required to use SPF and DKIM. That alone will eliminate a huge portion of the spam problem.

It’s a good thing Gmail does that but it helps only their users right now (since February’s changes). If your business communicates with thousands of small domains on small providers it will take another decade for every SMTP server to fix their s***. And even then there will still be spam.

What’s the difference between a spammer going through all the hoops of creating a mail domain and a new business ?

Not much. Both mynewlegitEmailDomain.com and SpammerWho UnderstandsDNS.com are essentially the same for a spam filter.

They both would have “legit DNS records” but would both have trouble sending mail to Gmail at first.

Because Gmail cannot know if you are a spammer that setup a new disposable domain or a serious actor in email that just wants to communicate with you.

Truthfully Email is a terrible protocol that cannot be fixed with yet another layer of duct tape. You will never have any guarantee your mail is delivered. There is plenty of communication systems that’s will tell you it’s delivered or not.

I work on email systems everyday.

Please don’t let this protocol survive.

Forget emails that is functionally a terrible communication tool.

You never know if it will be received by the recipient. There is always false positive false negative classification in spam.

SMTP is an outdated protocol that needs to die.

And that’s a bad thing ?

Basically, price surges on the menu when in high demand. So if you would go take out some Wendy’s during some holiday or a very busy time the prices would be higher than usual.

Obviously, I agree with others that Wendy’s will probably do that sneakily and not with huge price difference but the concept is disgusting especially when it comes to food imo.

Who do we git blame ?

We also have that in France.

Some peers on torrents are indeed tracking uploaders. Here you receive a letter saying which file you shared and when.

Blockbusters are the most likely to be tracked.

For me I avoided that system with alldebrid’s sort of seedbox. And direct download with alldebrid.

Here as far as I know, a datacenter IP is free to download anything and everything on torrents… Which it then uploads to DDL sites for me. And since they can’t don’t track DDL it’s safe.

Also was it Y shaped ?

For growth. You don’t water your garbage?

Have you checked when the file was last modified.

If it fits the date you did the Spotify command then I wouldn’t worry much about it.

If you still are concerned you can send the file to virustotal to be safe.

If it’s more concerning for you for a functional reason then move the file elsewhere if nothing break you should be fine.