×
Login Register an account
Top Submissions Explore Upgoat Search Random Subverse Random Post Colorize! Site Rules Donate
6

Is it still possible to phish people with just the click of a link

submitted by GreenSaint to whatever 9 monthsJul 18, 2024 08:06:36 ago (+7/-1)     (whatever)

Back in the day I used to have a program and all I had to do was get people to click the link. And it would immediately give me the password to their account. I wasn’t doing anything malicious with it. It was wrong to do but I wasn’t trying to steal or anything. I was just doing it to fuck around and see how far I could go. Get into one persons account then use that to spread. Can you still do stuff like that with say Twitter or Facebook or whatever. Or is security just a little better these days. Cause I don’t know shit and I was doing it very easily. I don’t think it was a program I even had to download.


14 comments block

sort by: hot new top old low

[ - ] RabbiKinderschtupper 2 points 9 monthsJul 18, 2024 09:09:34 ago (+2/-0)

It's easy peasy and people fall for it all the time. We just sent out a phishing campaign at work the other day as part of cybersecurity testing. The results were depressing.

[ - ] bobdole9 2 points 9 monthsJul 18, 2024 09:32:59 ago (+2/-0)

The results were depressing.

Pretty sure which is why everything is moving to two-factor or some authorization key. People need a few "are you sure?" prompts.

[ - ] SilentByAssociation 0 points 9 monthsJul 18, 2024 10:39:47 ago (+0/-0)

People need continuing education when it comes to cyber security and social engineering.

[ - ] PotatoWhisperer2 4 points 9 monthsJul 18, 2024 12:10:15 ago (+4/-0)

What we need is less DEI hiring.

[ - ] SilentByAssociation 0 points 9 monthsJul 18, 2024 13:46:59 ago (+0/-0)

That'll improve morale for sure.

[ - ] CasualObserver 0 points 9 monthsJul 18, 2024 15:05:12 ago (+0/-0)

Yeah, no. You don't get their passwords by sending a link. They need to be fooled to enter it after clicking the link.

[ - ] GreenSaint [op] 1 point 9 monthsJul 18, 2024 18:28:04 ago (+1/-0)

Yes ok. Well that makes me feel a little better. Cause I was a kid and I had secretly had access to half my schools accounts. It was fun though. I would talk to people pretending like I was them. Find out formation, Stir shit up, spread rumors.

[ - ] RobertJHarsh 0 points 9 monthsJul 18, 2024 15:16:17 ago (+0/-0)

Do you get repeat customers in every campaign? We do and those people are supposed to be getting "a talking to" from HR.

[ - ] ProudRebel 2 points 9 monthsJul 18, 2024 08:21:35 ago (+2/-0)

I had a text sent to me that I suspect was a phish. It claimed it was from USPS (had their logo) and needed an address verification. I had a couple of orders coming in from ebay so i clicked it. A couple of days later my card got hit on amazon. I suspect the two are connected. Not sure tho.

[ - ] Wolfspider 4 points 9 monthsJul 18, 2024 08:42:30 ago (+4/-0)

I got the same thing, they even had links to USPS sites in their little address verification site. I looked up where the site address was registered though and it was in the Philippines.

Blocked!

[ - ] deleted 3 points 9 monthsJul 18, 2024 09:49:33 ago (+3/-0)

deleted

[ - ] Peleg 3 points 9 monthsJul 18, 2024 11:29:43 ago (+3/-0)

"Blip"
Beam me up Scotty!
Flip

[ - ] Ragnar 1 point 9 monthsJul 18, 2024 13:19:37 ago (+1/-0)

Breh, never open them texts, let alone click on the link. Delete without opening

[ - ] yesiknow 1 point 9 monthsJul 18, 2024 08:18:59 ago (+1/-0)

So I can just ask the internet for passwords I forget.

[ - ] Ragnar 0 points 9 monthsJul 18, 2024 13:18:18 ago (+0/-0)

It still works... on boomers