I’ve been using Youtube embeds in enhanced privacy mode by
chang[ing] the domain for the embed URL in your HTML from https://www.youtube.com to https://www.youtube-nocookie.com
I remember checking via DevTools (Application/Storage tab) that no cookie was actually set.
A customer just notified me that they did find cookies set by the domain
.youtube-nocookie.com — weirdly, something about "consent pending", which does not change when I click play, as other sources state.
They have also alerted me to some shenanigans in Local Storage, namely an item with the key
yt-remote-device-id, which has a UUID and an expiration date 10 years in the future.
I have always suspected that Enhanced Privacy Mode is somewhat of a exaggeration, but this seems to defeat the purpose almost entirely. And it makes youtube-nocookie practically useless w.r.t. a less painful GDPR-compliant user experience.
Is this a recent change? Is there any documentation or changelog on that?
I got a scam call today telling me that I had multiple warrants out for my arrest, and that if I hung up then I would get arrested. At this point it being a scam crossed my mind, but I had just woken up and was very scared and confused. It transferred to a woman who said that she was an officer with the police and that if I did not answer her question then I would be arrested (in hindsight of course this doesn’t make sense). I told them my name, address, and date of birth. They tried to get the last three digits of my social security number but I didn’t tell her that. After I told her my date of birth she said that I wasn’t the person they were looking for and she hung up. I realized that I had just been scammed, and that they had taken advantage of me being incredibly scared. What can they do with the information I gave them?
Earlier today, my mother opened an email thinking it was from my sister-inlaw, then clicked on the shortened link.
The system is Fedora 32, upgraded to this release a few days ago. The browser is Firefox with NoScript installed.
What should I do to confirm the integrity of the system? I’m concerned about the integrity of the Linux system, of course, but I’d also be concerned about any possible transfer of viruses or malware to Windows users my mother emails.
I’ve done this once before after a similar incident. I’m planning to create a live USB to scan the system for problems (which I did before) using one of the forensic Linux distros designed for this, but I’m pretty sure I did something else last time and can’t remember what.
What is necessary to ensure the system’s integrity?
I’ve read Clicked link in faked email and https://security.stackexchange.com/a/17854. https://security.stackexchange.com/a/73660 is fairly scary, though I’m somewhat sceptical of its claims.
I also read various online guides, but had difficulty finding anything specific to Linux and reasonably current. (I think I must be searching the wrong terms because I seem to remember finding this kind of information fairly easily before.)
So just 30 minutes ago, I was looking through some emails that ended up in my scam, and as usual there are amazon emails with recommendations based on past purchases and stuff like that. Then there is these new email asking that if I were to upload a photo to Amazon Photos I may be eligible for $ 10 in amazon credit. So in a moment of weakness I uploaded a photo and so on. Then I realized that this may have been a scam. I look through the email and I only find the link Amazon.com. This potentially scam email came from firstname.lastname@example.org. According to amazon, links ending with “@amazon.com” are real, however some people on Facebook claim it to be a scam. After uploading a photo I get an email that did not end up In my spam folder from email@example.com. I got on a live chat and the first person I spoke to said that it was a scam, and that amazon does not offer such credit. He put me on with someone in the appropriate department and she said that it was not a scam. Can anyone confirm if this is indeed a scam. I have setup two-factor authentication and changed my password and got rid of unnecessary information on my account, but I am kinda freaking out. Any clear information would be great.
I received an email on the 14th saying that a hacker has access to my pc it says that at the time of hacking my account (firstname.lastname@example.org) had this password (it was a version of my password but not one that I’ve ever used for my gmail) and it claimed to have been watching me for months and that it had infected my pc through a adult website and had video of me when I was on the site doing you know what and that it would send it to my contacts and correspondence but I don’t have any contacts on my pc and also I use a different user and email when I do that, also why didn’t it send it to that email and not any of the other emails I have saved on my pc. Am I falling for a bullshit email or do I have something to worry about? Also it said I have 48 hours to pay them in bitcoins and that it would track when I opened it and start the countdown and I just opened it last night
Andrew Spencer email@example.com Mon 20/04/2020 3:55 PM More actions
Internet Crime Complaint Center (IC3) In Partnership with: Swiss National Fraud Relief Center (NFRC)
Case/Reference ID: IE3033900045
We regret to inform you that you have been a victim of identity theft. Your identity and consumer credit files were compromised during a Microsoft data breach where millions of Australian tax payers information were exposed to hackers and used in an identity theft scheme now uncovered by federal authorities.
Your more personal details have been undisclosed in this email for your own security as your email might have been compromised as well. The offenders have since been prosecuted, tried and ordered to pay restitution to victims involved willingly through wire fraud and romance or other scams, or unwillingly through identity theft and hacking. This means victims that had direct contact with the offenders by telephone or email in response to some type of scam and those who are hacked and are unaware of the incident prior to this notification.
For more detailed information about this case and the settlement pay outs that you are entitled to, immediately contact the Office of International Affairs at the Limerick City District Court by replying to this notification, or by visiting in person at 38 Roxboro Road, Limerick, Ireland. If you are visiting in person, set up an appointment prior to your visit. If you are unable to make a trip, you will be rendered proper assistance online and on the telephone, which is recommended due to social distancing and isolation protocols.
Notice: Due to the current global pandemic, all court visits and services are strictly by appointment only, all court mailings have been temporarily suspended and all time-sensitive notifications such as the above are being emailed out until further notice.
Andrew Spencer Administrative Clerk
I have just bought a 5k emails pack from them, all passed gsa ser email test but the accounts do not receive emails!
@s@Sven You should consider removing them from gsa ser Buy accounts section.
I’m selling an item on Facebook Marketplace. I set up an exchange meeting with a potential buyer. The buyer sent me the money (50 CAD) beforehand via Interac e-Transfer. Before accepting the money, I made sure that I was on the real Interac website. I also made sure that I was on my real bank website before entering my username password to accept the money. The money was finally deposit in my account.
The problem is that the buyer never showed up and now he keeps making up excuse to not come pick up the item. This has been three months now.
I still have his money and the item. I did not lose any money. Is this some sort of long term scam or am I facing a really slow person?
I joined https://www.epayments.com/ around one month ago and i paid for merchant account there. Till now i haven't received card from them and also there is login problem. I cannot login to epayments now. I emailed about it them but haven't heard anything from them yet..
It looks like a scam what do you think? Had anyone tried here before?
Have received the following email which I believe to be a scam
Internet Crime Complaint Center (IC3) In Partnership with: Swiss National Fraud Relief Center (NFRC) Case/Reference ID: IE3033900045 We regret to inform you that you have been a victim of identity theft. Your identity and consumer credit file have been compromised and used in an identity theft scheme recently uncovered in Ireland by federal authorities. Your more personal details have been undisclosed in this email for your own security as your email might have been compromised as well. The offenders have since been prosecuted, tried and ordered to pay restitution to victims involved willingly through wire fraud and romance or other scams, or unwillingly through identity theft and hacking. This means victims that had direct contact with the offenders by telephone or email in response to some type of scam and those who are hacked and are unaware of the incident prior to this notification. You have received this notification because this applies to you directly regardless of if you have lived in Ireland or not, that’s where the case was opened and that’s where the hackers were charged. For more detailed information about this case and the settlement pay outs that you are entitled to, immediately contact the Office of International Affairs at the Limerick City District Court by replying to this notification, or by visiting in person at 38 Roxboro Road, Limerick, Ireland between 9:00 a.m. and 4:00 p.m., Monday through Friday, excluding Court holidays. If you are visiting in person, set up an appointment prior to your visit by telephone: +353 800 814 250 (toll-free) or by email. If you are unable to make a trip, you will be rendered proper assistance online and on the telephone. Regards, Ilia Price Administrative Clerk
The send address was Ilia Price The reply address was firstname.lastname@example.org
Are you able to confirm that is is a scam
Kind Regards Richard Stafford