• 0 Posts
  • 58 Comments
Joined 2 years ago
cake
Cake day: August 20th, 2024

help-circle






  • This has been an extremely obvious flaw in the modlog concept from the very start, and has been discussed on and off for years. IMO, it exposes a much wider issue with federated forums as currently implemented, despite the aggressive defense of some vague concept of “openness.”

    Blindly casting every user and mod action out into the universe in plaintext with no recall mechanism is problematic, and it will only get more problematic as the technical prowess of the average user drops. Doxxing is just the tip of the iceberg here, and I don’t think most people appreciate just how massive the social engineering attack surface actually is. Rogue instances could silently build engagement profiles on users, and then actually serve them targeted malicious content. This could be widespread, and almost impossible to detect.






  • socsa@piefed.socialtoYUROP@feddit.orgWe are doing donuts now I guess!
    link
    fedilink
    English
    arrow-up
    18
    arrow-down
    2
    ·
    edit-2
    5 months ago

    So this dude basically wiped out the entire store for a YouTube video and now nobody else can get the deal. I’m sorry man but this is the kind of shit which makes me hate influencer. At least with “traditional media” they’d go partner with the store and secure a separate supply, instead of doing the cringe influencer shit where they film themselves holding up the entire line while they buy every donut in the store.



  • It’s one of the reasons I think public voting is a terrible idea. It’s a wet dream for hyper-targeted engagement farming. Even to the point it creates a bit of a nightmare scenario for spear phishing and malware injection. The stated “transparency” benefits just seem incredibly trivial compared to the risk, especially when actual malicious actors will simply spam bots and alts, while actual users must navigate this weirdly huge threat surface for basically no good reason.