engadget.com

Caboose12000 , 1 year ago to technology in An email typo has reportedly sent millions of US military messages to Mali

how

14th_cylon , 1 year ago (edited 1 year ago)

top level domains .mil vs .ml

so it was a lot of individual typos, not a single big one, but they are appearantly pretty common.

up until now the domain management was outsourced to some commercial company from netherland, which tried to alert US DOD to the problem.

but in near future it is expected the control of the domain to be transferred under the control of local military junta, which can lead to these mails being stored and sold to higher bidder, or some similar fun stuff.

Caboose12000 , 1 year ago

it’s wild to me that .ml isn’t a blocked domain by default for most military contractors and employees

RheingoldRiver , 1 year ago

no kidding, that's the kind of thing that after the first few times it happens, someone from product should flag this and build in a system with redundant checks if you want to send mail to .ml, like:

1. The user has to have permission to send to .ml in the first place
2. Any individual .ml address they want to send to has to be whitelisted in a separate UI from email compose (possibly excluding replies)
3. Any time they send to .ml (or any external domain), the recipient box turns a different color, and there's a notice, CURRENTLY SENDING TO AN EXTERNAL DOMAIN
   • with a list of all external domains included eg you could also be sending to a contractor
   • and a count of the domains
4. Any .ml sent mail is auto delayed by a couple minutes and requires you to confirm you wanted to send it (again possibly excluding replies)

I would hope there's also some flags emails can have for whatever sensitive info levels, these should also come with automatic client-side and server-side validation that you're not sending them to someone who you shouldn't.

Marsupial , 1 year ago

Sounds like a .us tld would’ve saved them some headache.

14th_cylon , 1 year ago

not sure about that… 😂

https://i.imgur.com/wxgLvgt.png

optissima , 1 year ago

Talking to a friend who works in the VA, he suspects there’s a lazy contractor that’s causing most of this.

deafboy , 1 year ago

More specifically, how does the .ml provider know the content of these messages? Do they just spoof MX for all unregistered domains, or did they specifically register the domain names mimicking the US military hostnames? Both scenarios seem sketchy.

laylawashere44 , 1 year ago

It’s described in the article. The Dutchman who runs the registrar for Mali first started to started to store the emails sent to these invalid addresses before being overwhelmed (and probably realising the literal minefield having US government secrets is) and stopping doing that. So yes his firm was initially intercepting messages sent to the aether by spoofing invalid addresses.

wanderingmagus , 1 year ago to technology in Meta faces a $100,000 daily fine if it doesn't fix privacy issues in Norway | 'It is so clear that this is illegal that we need to intervene now and immediately.'

Pocket change for a corporation like Meta. They won’t even notice it. It’s the right direction, Norway, but this isn’t your average company.

sjatar , 1 year ago

If they leave it for 10 years it will be 0.4% of their yearly gross profit. They will surely care :^) tbh these fines need to be exponential instead of linear.

Just fine them 1 dollar with a daily interest rate of 1%.

LinkOpensChest_wav , 1 year ago to technology in YouTube test threatens to block viewers if they continue using ad blockers | Engadget

deleted_by_author

hedge OP , 1 year ago

How exactly are they going after Invidious?

LinkOpensChest_wav , 1 year ago

deleted_by_author

hedge OP , 1 year ago

Thanks for the link👍

saba , 1 year ago

I agree. I use it mostly for music, but there are many other ways to find music. I’ve been listening to a lot of internet radio lately. I’ve occasionally watched howto videos, but for most things I prefer to read instructions for something, with a photo if necessary.

RizzRustbolt , 21 days ago to technology in This cute pink blob could lead to realistic robot skin

What was that Thomas the Train Engine creepypasta again?

pewgar_seemsimandroid , 23 days ago to technology in EU finds Microsoft violated antirust laws by bundling Teams

give us Skype

Appoxo , 23 days ago (edited 23 days ago)

*A well programmed teams

pewgar_seemsimandroid , 23 days ago

no I meant giving Skype to the fediverse or something

hperrin , 26 days ago to news in Someone apparently hacked 50 Cent’s accounts to peddle a memecoin and made off with millions

They took him for every cent!

FlyingSquid , 26 days ago

Nah, only 50 of them.

Mazoku , 1 month ago to technology in Apple reportedly has plans for a thinner iPhone, MacBook Pro and Apple Watch

Wh🥱 cares

EncryptKeeper , 1 month ago to technology in Apple refuses to call Apple Intelligence 'AI'

No they don’t, they call it AI right at the top of the page advertising it on their website.

www.apple.com/apple-intelligence/

st33lb0ne , 1 month ago to technology in Apple refuses to call Apple Intelligence 'AI'

How about “Apple Idiocracy” ?

Kolanaki , 1 month ago to technology in Apple refuses to call Apple Intelligence 'AI'

They just want to Think Different.

Unfortunately that often means being stupid.

Rayspekt , 1 month ago to technology in Humane is said to be seeking a $1 billion buyout after only 10,000 orders of its terrible AI Pin

Ed Zitron is going to have a field day with this one.

dependencyinjection , 1 month ago (edited 1 month ago)

I listen to Better Offline and I’m as jaded and cynical as the rest of us, but even I find some of his episodes too much to take.

Like he has no impartiality at all, particularly his takes on LLMs. Our small company of software developers and engineers have saved so much time with Visual Studio CoPilot. The fact is there are uses where they’re extremely useful; just maybe not as the MSM portrays it.

Thwompthwomp , 1 month ago

He does get a bit ranty. I still appreciate his take though. Some of the LLMs are super helpful for me for some tasks, but the hype cycle for AI is really a lot to take and it does warrant some actual pushback against it. I can tell I’m becoming more of an old man, but it’s nice to have someone else confirm how bad the Internet is becoming. It’s almost like a hazy dream for me of back in the early days when it was just people sharing weird stuff with each other and not the active battle to fend off ads and scummy sites to find things.

dependencyinjection , 1 month ago

This is an assumption but he’s just preaching to the choir at this point. I don’t see him having a mainstream audience and the only people that listen are people that already know how fucked everything is.

Also, so many ads. Like sure he’s got to make a living but he’s doing it in the very system he opposes.

aeronmelon , 1 month ago to technology in Humane is said to be seeking a $1 billion buyout after only 10,000 orders of its terrible AI Pin

Humane as a company is worth the cost of exactly 10,000 units.

homesweethomeMrL , 1 month ago to technology in Spotify is raising the cost of Premium subscriptions, again

What’s “spotify”?

EpicFailGuy , 1 month ago

It’s a paid alternative to “Spot-X” and “BlockTheSpot” 🏴‍☠️🏴‍☠️🏴‍☠️

cordlesslamp , 1 month ago

Tell me more.

BorgDrone , 1 month ago

It’s the “we have Apple Music” at home of streaming services.

Basically: more expensive, shitty UI, no lossless or high-res audio. Oh, and they pay the least to artists of all streaming services.

fartington , 1 month ago (edited 1 month ago) to technology in Spotify is raising the cost of Premium subscriptions, again

deleted_by_author

ShepherdPie , 1 month ago

“Nugs” sounds like it should be an online weed delivery service.

HootinNHollerin , 1 month ago

Ah man I forgot about nugs since my sound tribe days

3aqn5k6ryk , 1 month ago to technology in Spotify is raising the cost of Premium subscriptions, again

Then the rest follow. If Apple music hike their price again, time to dust off my eye patch. Ive already cancelled all my streaming and went with plex, radarr, sonarr.

Norgur , 1 month ago

Life hack: get Plexamp and Lidarr with Lidarr extended scripts. Then sign up for a free month of tidal with a throwaway account. Add said account to Lidarr extended. Add all the artists you want to Lidarr and let Lidarr Extended download all the stuff from Tidal for you. Once it has run out, register with another throwaway adress.

cyberpunk007 OP , 1 month ago

Basically doing this already but my only issue is discovery. That’s why I pay for Spotify. I used to have a script set up before the API closed that would run automatically monthly to snag all my liked songs.

Norgur , 1 month ago

There are cool projects for that on lidarr, or you use things like last.fm. Lidarr extended does have a feature to grab similar artists to the ones you have, leads to much bloat in a very short amount of time, of course.

3aqn5k6ryk , 1 month ago

Thanks mate. Will definitely look at lidar. Maybe its time, some music like doom eternal arent available in apple music and this might push me.

ShepherdPie , 1 month ago

Does this work with any other services like spotify? I know Tidal is lossless but I already have Spotify and Lidarr.

Norgur , 1 month ago

No, it works on Tidal and Deezer. Yet, since the throwaway account is free... :P Lidarr can import spotify playlists and fetch the tracks themselves from somewhere else though

cyberpunk007 OP , 1 month ago

I do all these plus the streaming services 😂.

3aqn5k6ryk , 1 month ago

Music streaming the only one i cant be bothered with since i have family plan with my gf plus discovering new music and new album from fav artist is too much to pass on.