Email or username:

Password:

Forgot your password?
Top-level
SwiftOnSecurity

"Don't put your private information into websites you don't recognize the URL of or have weird combinations of numbers. This is easy only fools fall for these scams."

THEIR DOCTOR'S WEB DEVELOPER:

Easypay5.comp
15 comments
Thomas Dickerson

@SwiftOnSecurity see also your local fuel oil delivery company

Gary

@SwiftOnSecurity simple solution to that: social healthcare you don’t have to pay for 😂 #europeanSocialistElite

wizzwizz4

@infoseccrow @WiteWulf @SwiftOnSecurity Hey, they're not… *that* bad. I've seen worse.

I appreciate how you can tell what's going on in the back-end, because part of the server-side logic relies on the client making a specific sequence of GET requests. Also, I like how they usually comply with privacy law.

(I'm not really selling this, am I?)

gabe is a ghost

@wizzwizz4 @WiteWulf @SwiftOnSecurity I mean, it's a step up from DVLA, who's test registration system has a misconfigured autoscaler that only exposes itself when under load...

Ryan Robinson

@SwiftOnSecurity Last time I got an email asking me to confirm my next dentist appointment, Outlook's anti-phishing protection gave me a giant warning that it seemed like a suspicious link. I'm pretty sure it was legit but the URL was much worse than this one.

Richard "RichiH" Hartmann

@SwiftOnSecurity if I was motivated, I would be looking up that specific capitalization and whitespace mistake in data dumps to see where else you auto filled that test data over the years...

Richard "RichiH" Hartmann

@SwiftOnSecurity the thing is... you're good people, so the motivation is not very high

Klaus Frank

@SwiftOnSecurity Or PayPal overlays that request you to login (which is apparently one of the official ways to integrate Paypal)...

Finnley Dolfin

@SwiftOnSecurity unless you’re like me and know it’s a scammy website and wants to troll it with fake info

Aaron Fever

@SwiftOnSecurity I love how training users to spot phishing immediately results in a bunch of reports for our own marketing, hr, and finance communications.

ROTOPE~1 :yell:

@SwiftOnSecurity looks like the sort of thing that uses JS addition to concatenate all of that into a sql statement, and the server just blasts that post verbatim to the database.

wildgoose
@SwiftOnSecurity yo are you actually taylor swift who is good at computers or is it just a meme
Robert A. Hill

@SwiftOnSecurity

For real. Dignity Health and other *major* providers do this and it *kills* me.

Go Up