Email or username:

Password:

Forgot your password?
Michał "rysiek" Woźniak · 🇺🇦's posts Post Back to profile
Top-level
Michał "rysiek" Woźniak · 🇺🇦

And guess what, when Google Sites are used in phishing attacks — and anyone who does any #InfoSec work knows they do, a lot! — somehow the whole sites.google.com domain does not get flagged like that.

When Google Amp is used in phishing attacks — again, not a rare occurrence! — somehow Google Amp domains do not get flagged this way. :thaenkin:

Flagging our site stopped exactly zero attacks. But now we have to send in reports and beg Google to maybe please unblock us.

#FuckGoogle #Hackers

9 Apr 2023 at 0:51 | Open on mstdn.social
8 comments
Michał "rysiek" Woźniak · 🇺🇦

And why is that?

Because over-blocking a website of small hackerspace is *cheap*. "No downside".

Because "hacker" and "hack" have been appropriated by those too lazy to be specific in their use of language when talking about "computer stuff." Also, it drives clicks!

Result? Some algorithm somewhere sees "hacker" and goes bananas: "danger, Will Robinson!"

So forgive me when in the future I react *badly* to some random toot mislabeling cybercriminals as "hackers".

#FuckGoogle #InfoSec

9 Apr 2023 at 1:02 | Open on mstdn.social
Michał "rysiek" Woźniak · 🇺🇦

In the meantime, if you want to help our small #hackerspace get our website un-blocked, go here and "report a detection error":
safebrowsing.google.com/safebr

And long-term, consider not abusing the h-word when you want to talk about cybersecurity. Even if it's a tiny bit more difficult at first because due to force of habit:
rys.io/en/155.html

I am so damn tired of having to prove, after a decade-and-a-half in #InfoSec, that I am not a one-man APT myself, ffs!

#Hackers #FuckGoogle

In the meantime, if you want to help our small #hackerspace get our website un-blocked, go here and "report a detection error":
safebrowsing.google.com/safebr

And long-term, consider not abusing the h-word when you want to talk about cybersecurity. Even if it's a tiny bit more difficult at first because due to force of habit:
rys.io/en/155.html

9 Apr 2023 at 1:06 | Open on mstdn.social
Michał "rysiek" Woźniak · 🇺🇦

And if you happen to ever be in Reykjavík on a Thursday evening, come have a beverage with us.

Hopefully the site gets unblocked soon, we try to keep it up to date with the details of where we meet each week.

#FuckGoogle #Hackers #InfoSec

9 Apr 2023 at 1:14 | Open on mstdn.social
Michał "rysiek" Woźniak · 🇺🇦

Oh by the way, this is what the site looks like (and yes, we will soon move away from the gmail address, because — you guessed it — #FuckGoogle).

Screenshot of the hakkavelin.is website. Text: Hakkavélin Ðe only vintage hakkerspace in Reykjavík City. Established in the past. Looking to the future. Hoping for presents. Please let us know at hakkavelin@gmail.com if you'd like to stay in touch or get involved. Is it meeting day yet?
9 Apr 2023 at 1:25 | Open on mstdn.social
kcarruthers
⌬ Codified ⌬

@rysiek Wrt email, I use protonmail with my own domain, I say #FuckGoogle at least once a day, life outside the #Matrix is so much better 😎

9 Apr 2023 at 1:43 | Open on ignifi.social
Šimon Brandner

@Codified @rysiek, but life inside #matrix (matrix.org) is so much better :P

10 Apr 2023 at 5:12 | Open on mastodon.online
Patrick
@rysiek gmail sadly has similar policies to safe search, ie every SharePoint domain is sent to spam.

Has anyone tried making a list of where Google's security policies have ended up also attacking a competitor to their services?
9 Apr 2023 at 21:25 | Open on fe.disroot.org
Go Up