this post was submitted on 09 Dec 2024
274 points (98.9% liked)

Technology

1573 readers
15 users here now

Which posts fit here?

Anything that is at least tangentially connected to the technology, social media platforms, informational technologies and tech policy.


Rules

1. English onlyTitle and associated content has to be in English.
2. Use original linkPost URL should be the original link to the article (even if paywalled) and archived copies left in the body. It allows avoiding duplicate posts when cross-posting.
3. Respectful communicationAll communication has to be respectful of differing opinions, viewpoints, and experiences.
4. InclusivityEveryone is welcome here regardless of age, body size, visible or invisible disability, ethnicity, sex characteristics, gender identity and expression, education, socio-economic status, nationality, personal appearance, race, caste, color, religion, or sexual identity and orientation.
5. Ad hominem attacksAny kind of personal attacks are expressly forbidden. If you can't argue your position without attacking a person's character, you already lost the argument.
6. Off-topic tangentsStay on topic. Keep it relevant.
7. Instance rules may applyIf something is not covered by community rules, but are against lemmy.zip instance rules, they will be enforced.


Companion communities

[email protected]
[email protected]


Icon attribution | Banner attribution

founded 1 year ago
MODERATORS
 

The true cost of generative AI is the erosion of trust.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 86 points 2 weeks ago

We've discussed this years back, and decided our safe phrase is "Hi gramma, it's me im in jail and need apple gift cards"

[–] [email protected] 57 points 2 weeks ago (1 children)

I just call my grandma now and again and attempt to scam her. Now she’s hardened.

[–] [email protected] 32 points 2 weeks ago (2 children)

I pentest my grandma about once or twice a year.

[–] [email protected] 25 points 2 weeks ago

So does your grandpa

[–] [email protected] 2 points 2 weeks ago

Grandmas doctors were getting out of hand so I had her put down

[–] [email protected] 29 points 2 weeks ago (2 children)

Eww y'all have a code word? Those are easily guessable.

My wife and I have a random 6 digit code that rotates every 30-seconds based on an algorithm and if we don't properly authorize, we will refuse the connection.

[–] [email protected] 3 points 2 weeks ago (1 children)

Eww you have a random rotating 6 digit code to connect with your wife? Those are easily guessable.

My wife and I have just agreed that we don't properly authorize, so we will always refuse the connection.

[–] [email protected] 2 points 2 weeks ago* (last edited 2 weeks ago)

I just don't have a wife. Even more secure.

[–] [email protected] 2 points 2 weeks ago (1 children)
[–] [email protected] 10 points 2 weeks ago (1 children)
[–] [email protected] 2 points 2 weeks ago

I mean its not even 2FA exactly. It's more like TOTP which 2FA might use, granted.

[–] [email protected] 23 points 2 weeks ago

My family gaslit me for decades.

I can only hope someone bothers to harass them with my own voice.

[–] [email protected] 19 points 2 weeks ago (1 children)

So… the same Stranger Danger protocols that parents have been told to use for years.

[–] [email protected] 4 points 2 weeks ago (1 children)

Wait you actually had a code word for when a stranger approached you?

I thought that was a joke

[–] [email protected] 4 points 2 weeks ago (1 children)

It is not a joke. Honestly I don’t remember anymore if we had a code word or not, but it was definitely discussed with parents and school officials; probably in D.A.R.E too. The premise is that a kidnapper might try to trick you with: “Your mom is [working late / in the hospital / etc.], she asked me to pick you up today.” If they don’t have the password, then you don’t go with them and then go get help from a trusted adult. If you can’t get to one, run away and scream.

[–] [email protected] 3 points 2 weeks ago (1 children)

that is a fucking wild concept lol, in what scenario would a parent ask someone the kid doesn't know to pick them up? like even if you 100% trust someone, that doesn't work if the kid has never met them!

load more comments (1 replies)
[–] [email protected] 17 points 2 weeks ago

Truth be told, me and my parents have been doing this for a bit now to combat the kidnapping scam calls

[–] [email protected] 15 points 2 weeks ago (2 children)

We don't need code words, we need a proper PKI (public key infrastructure) for authenticated communication.

[–] stevedice 12 points 2 weeks ago (1 children)

You receive a call from an unknown number and they tell you they've kidnapped your wife. They then give her the phone so you can hear her but she didn't do it through Signal so she's obviously not your wife so you just hang up.

[–] [email protected] 6 points 2 weeks ago* (last edited 2 weeks ago)

You can use this to your benefit though

husband/wife walks up to you to start an argument

"sorry honey, you need your public key"

Instant win

[–] [email protected] 8 points 2 weeks ago (1 children)

Seems a bit hard to verbally exchange keys and sign your speech though.

[–] [email protected] 4 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

Yeah, I wouldn't recommend doing that.

And that's not how you establish a PKI or implement AE (authenticated encryption). When I send a voice message e.g. I don't verbally sign it, that's actually part of KE (key exchange) protocol.

Same applies to non encrypted, authenticated communication of course.

And in case you are talking about physical face to face communication: I think you'd recognize your family and friends without the help of cryptography.

Edit: if you have any question, feel free to ask! Maybe I misunderstood you? Then I'm sorry

[–] [email protected] 2 points 2 weeks ago (1 children)

Of course you don't verbally sign voice messages. That wouldn't make any sense at all unless you are a robot or something.

It was just a joke. But if you wanted to authenticate something (like an email, or voice I guess) in a PKI you would sign it using your certificate private key and the CA would tell the recipient if it's valid or not.

[–] [email protected] 2 points 2 weeks ago (1 children)

That's what the article is about though, voice messages can now be spoofed. It happened to one of my friend's parents

[–] [email protected] 2 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

I was implying that you do the actual singing verbally. Like actually saying the bits, which would be pretty much impossible.

Of course you could sign voice messages. That would be like singing any other file.

[–] [email protected] 1 points 2 weeks ago
[–] [email protected] 12 points 2 weeks ago

The Secret Phrase is: hunter2

[–] [email protected] 12 points 2 weeks ago (3 children)
[–] [email protected] 3 points 2 weeks ago

AI Says:

DECEIVE YOURSELF, DECEIVE THE WORLD

load more comments (2 replies)
[–] [email protected] 10 points 2 weeks ago (1 children)
[–] [email protected] 6 points 2 weeks ago (1 children)

I don't want to be turned off

load more comments (1 replies)
[–] [email protected] 10 points 2 weeks ago (1 children)

Between this and the recommendation to fall back to encrypted communication, this almost looks like someone trying to bootstrap a populace trained to evade the feds.

[–] [email protected] 2 points 2 weeks ago
[–] [email protected] 7 points 2 weeks ago (1 children)

Trust is dead, the foundation of communication was laid to rest without another soul in sight.

[–] ogmios 9 points 2 weeks ago (1 children)

Digital communication is dead*

People forget there's still a perfectly good real world right there any time they want to live in it.

load more comments (1 replies)
[–] [email protected] 7 points 2 weeks ago

Klaatu barada nmmmpph

[–] [email protected] 6 points 2 weeks ago (1 children)

my family knows i hate using the phone in the first place so me calling without good reason is a red flag

[–] [email protected] 11 points 2 weeks ago (1 children)

The scam is exactly about feinting a "good reason". So it is still a good idea to establish a code phrase for such situation, even if you don't normally use the phone.

[–] [email protected] 2 points 2 weeks ago (2 children)

its the mannerism that matters on the phone.

the other part is for a scammer to create a model using broken english/asian language, which on its own, is a huge hurdle.

load more comments (2 replies)
[–] [email protected] 6 points 2 weeks ago

Could just ask me about some niche topic im always info dumping about lmao.

[–] [email protected] 5 points 2 weeks ago (3 children)

My secret word is banana 🍌

[–] [email protected] 4 points 2 weeks ago (2 children)

Is 🍌 also the safeword, or do I have to remember two words?

[–] [email protected] 4 points 2 weeks ago
[–] [email protected] 3 points 2 weeks ago (1 children)

The safe word is Don't Stop, so 3 words.

[–] [email protected] 3 points 2 weeks ago

Well, I know "I'm prolapsing" isn't the safe word but gosh everything sure sounds wet

load more comments (2 replies)
[–] [email protected] 4 points 2 weeks ago
[–] [email protected] 3 points 2 weeks ago

Anyone born in the 80's probably still has the code word their parents gave them.

[–] [email protected] 2 points 2 weeks ago

"What colour are my pubes"

[–] [email protected] 1 points 2 weeks ago

I just tell them to hang up and call me right back. In some scenarios that might not be the best solution but it is the easiest blanket approach that I can find to keep everyone safe.

load more comments
view more: next ›