this post was submitted on 22 Nov 2023
242 points (95.5% liked)

Privacy

31892 readers
760 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Some random website knows which school i go to, this is the second time i have received this message

all 45 comments
sorted by: hot top controversial new old
[–] otter@lemmy.ca 145 points 11 months ago* (last edited 11 months ago) (3 children)

Sounds like a really spammy and annoying way to promote an app. I assume someone else who has your phone number signed up on their app and gave access to all their contacts. Then the app sends out spam texts to get you to sign up.

Depending on where you are located, you might be able to report it. Otherwise just drop them a bad review, or name and shame them here

edit, I assume it's this: https://slickapp.co/

[–] fastandcurious@lemmy.world 46 points 11 months ago (3 children)

The thing is there should be a big fucking warning screen when apps ask for contact permissions saying ‘You are sharing OVERLY sensitive and potentially DANGEROUS data’ and then have the screen wait until 15 sec before they can press OK

But they are reserved for when i am using an adblocker

[–] simple@lemm.ee 39 points 11 months ago (3 children)

If you have a normal social life it's honestly expected that a couple of people will leak your phone number (and contact name). Nothing you can really do about it. Happened to me many times.

[–] taladar@sh.itjust.works 5 points 11 months ago

Leaking it because someone they know personally asks? Sure. But the software side via social networks and other apps can absolutely be nailed down a lot more than it is.

[–] sour@kbin.social 3 points 11 months ago

am not wantings to be social anymore

load more comments (1 replies)
[–] ultratiem@lemmy.ca 11 points 11 months ago* (last edited 11 months ago) (1 children)

That’s just a fundamental problem with security. You can vault up your home but give your idiot brother in law a key and find the back door wide open, him drunk on the kitchen floor.

Prompts don’t work and aren’t really the right way to go because they are annoying and pretty cryptic as apps often assign a myriad of features to a single permission. Everyone’s just going to hit OK.

It’s a difficult issue to solve because there are so many edge cases. And fundamentally you can’t really control what others do with your number.

Honestly. I wish we started talking about doing away with phone numbers altogether. I feel tech is there. And it’s honestly such a massive fingerprint. I’ve had mine for 20 years ffs.

[–] CoderKat@lemm.ee 3 points 11 months ago* (last edited 11 months ago)

Yeah. There's literally nothing you can put on a prompt that will truly work. It's still a good idea to prompt cause it will reduce how many people approve the prompt, but there is a significant number of people who don't read prompts at all and just insta-confirm.

At best, I think you could design it so there's no way for an app to request certain permissions themselves. They'd have to be opted in from the system settings and apps could only tell you how to do it. But that's a usability nightmare that is quite frustrating for legitimate usages. There's already some super sensitive permissions that do this. I think the ability to install apps, ability to display over other apps, and password managers for android.

[–] ech@lemm.ee 10 points 11 months ago

People still wouldn't care. The value of privacy, for one's self or others, has seriously cratered in the last few decades.

[–] LinkOpensChest_wav@lemmy.one 6 points 11 months ago
[–] tanja@lemmy.blahaj.zone 3 points 11 months ago (3 children)

Their website is slickapp.co (without the m at the end), but their Android package name is com.slickapp.

Isn't that a bit of an issue?
For example, when handling URLs?

[–] biscat@lemmy.world 14 points 11 months ago (2 children)

Don't most Android packages begin with com. ?

[–] skullgiver@popplesburger.hilciferous.nl 10 points 11 months ago* (last edited 11 months ago)

[This comment has been deleted by an automated system]

[–] huginn@feddit.it 5 points 11 months ago (1 children)

Not really.

Android apps can declare which urls they accept as deep links. Once that is registered with the system (ie after install) then links of that type can be opened by the app. It doesn't have to match the package name.

[–] taladar@sh.itjust.works 0 points 11 months ago (1 children)

The package name should, however, match a domain owned by the publisher of the package.

[–] Warl0k3@lemmy.world 63 points 11 months ago (1 children)

Yall, high-school yearbooks are public records.

[–] tonyn@lemmy.ml 20 points 11 months ago (2 children)

Is there a place you can access these yearbooks, because I'd really like to see mine.

[–] Death_Equity@lemmy.world 3 points 11 months ago

The school you went to will have them on file. Otherwise, there are websites that you can order or view them.

[–] ClaireDeLuna@lemmy.world 34 points 11 months ago

What happens is some kid gets a gossip app which takes their contact data and then uses it to send this shit.

I used to get it pretty often too when I was in school.

[–] Stalinwolf@lemmy.ca 34 points 11 months ago (1 children)

This reminds me of the anonymous confession thing that made it's rounds on Facebook several years back. My cousin would post links to his every day with messages like, "Let's see what you've got" or "Give me your worst" attached to it. I suspect he was desperately fishing for compliments, or hoping for anonymous love confessions from the girls he was flirting with, as he would also post scrambled love letters on his wall that he must have figured these girls had time to sit down and eagerly unscramble (ie; I VELO UYO YLSHAE RMOE NTHA HTE UNS VELOS TEH ONOM). I always made sure to anonymously let him know what a stupid, annoying fuck he was being.

[–] Cqrd@lemmy.dbzer0.com 16 points 11 months ago (1 children)

If I had a dollar for every stupid thing I've deleted that Facebook has reminded me I posted in high school or college, I'd be debt free.

[–] Riven@lemmy.dbzer0.com 9 points 11 months ago

I'm glad MySpace got nuked and deleted all my old stuff.

[–] vzq@lemmy.blahaj.zone 31 points 11 months ago

Those LinkedIn emails are getting out of hand.

[–] lugal@lemmy.ml 26 points 11 months ago (2 children)

Don't keep us in suspense! What did they say? /s

[–] fastandcurious@lemmy.world 26 points 11 months ago

‘Nice glasses you wear’

Please tell us your address so we can bring relevant offers and products straight to your doorstep

[–] ExtremeDullard@lemmy.sdf.org 3 points 11 months ago

I know what you did last summer...

...

Bwahaha! gotcha!

[–] Death_Equity@lemmy.world 26 points 11 months ago (2 children)

Google your name. There are a bunch of websites that will list your known addresses, affiliates(family or people you have lived with), phone numbers, social media, etc.

That data is collected through various means and then are sold to interested parties.

[–] taladar@sh.itjust.works 7 points 11 months ago

Generally information gathering from public sources like that is called OSINT in case someone wants to look up more details.

[–] PsychedSy@sh.itjust.works 2 points 11 months ago

Google will monitor your deets in their search results and let you pull them, though I'm not sure how useful that is to most of the peeps in a privacy community.

[–] NabeGewell@lemmy.world 23 points 11 months ago

2010 Facebook is that you?

[–] modifier@lemmy.ca 21 points 11 months ago

As a homeschooled kid, let them come.

[–] miss_brainfart@lemmy.ml 15 points 11 months ago* (last edited 11 months ago)

They might not know know, but there sure can be a lot of meta data one can use to determine that a person goes to school, where it might be, and what school it most likely is.

Or someone else straight up posted the information publicly. That's always a possibility you have to consider.

Either way, isolating certain websites and services from each other and/or the rest is certainly a good practice to limit what they can gather about you. If you don't do that already, that is.

[–] FlyingSquid@lemmy.world 11 points 11 months ago

This is why it's good to be middle-aged. If anyone I know was described as my 'friend in _____ school' without naming them, I'd just assume it was someone I don't remember anyway.

[–] conspiracypentester@lemmy.world 6 points 11 months ago

Looks like a great way to phising