1. Attachments are working again! Check out this thread for more details and to report any other bugs.

Just need to vent...

Discussion in 'Fred's House of Pancakes' started by Mendel Leisk, Jul 6, 2022.

  1. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,663
    15,663
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    So today, I got this unsolicited SMS text message:

    upload_2023-10-5_20-53-52.png

    Notice the SMS message has two spellings:
    • "Your Wallet activation code"
    • "Wallet Activation Service"
    Not having asked for any change to my credit card or financial interfaces, I contacted the Citi bank group. Long story short, my COSTCO CITI card is deactivated and I'm getting a replacement.

    Asking Mr. Google, I found:
    https://www.themoneyedit.com/consumer-advice/Apple-pay-wallet-text-scam

    Apple Pay Wallet text scam: how to stay safe from latest fraud attempt
    Here is how to spot and avoid the Apple Pay Wallet text scam​

    So looks like someone may have been 'scratching at my door.' Why and how remains an open question that I won't waste any brain cycles on beyond making sure all of my accounts are 'safe.' Password changes at a minimum.

    "Here were two versions: 1) Even a paranoid can have enemies. 2) Just because you're paranoid doesn't mean they aren't after you. This adage has been attributed to Delmore Schwartz ..."

    Bob Wilson
     
    #1121 bwilson4web, Oct 5, 2023
    Last edited: Oct 5, 2023
  2. tochatihu

    tochatihu Senior Member

    Joined:
    Apr 10, 2004
    9,157
    3,562
    0
    Location:
    Kunming Yunnan China
    Vehicle:
    2001 Prius
    The internet is 'people'. People who would directly scam you for their enrichment. People who tell lies in hope that you will promulgate/tweet/X those lies. People who tell sorta-kinda lies to get clicks. People who post porn and cat videos because they know what you like.

    Here and there, the internet also presents useful accurate information supported by a preponderance of current evidence. Overall it paints a disturbingly accurate picture of who we are. Such was not available before this new global bazaar arrived. At first glance it is probably accurate but icky description of who we are.

    And yet, those inclined towards rational thoughts can feed selectively at the buffet.
     
  3. RRxing

    RRxing Senior Member

    Joined:
    Jul 7, 2009
    2,522
    1,795
    0
    Location:
    NEPA
    Vehicle:
    Other Hybrid
    Model:
    Limited
    I never reply to unsolicited messages, I just select Report Junk and Delete.
     
  4. ETC(SS)

    ETC(SS) The OTHER One Percenter.....

    Joined:
    Oct 28, 2010
    7,855
    6,658
    0
    Location:
    Redneck Riviera (Gulf South)
    Vehicle:
    Other Non-Hybrid
    Model:
    N/A
  5. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,663
    15,663
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    FOUND it. Trojan horse:
    A10D4326-4DA4-42BF-AE9A-773AA23496D6.png

    I feel so foolish.

    Bob Wilson
     
  6. jdenenberg

    jdenenberg EE Professor

    Joined:
    Nov 21, 2005
    3,872
    1,871
    1
    Location:
    Trumbull, CT
    Vehicle:
    2020 Prius
    Model:
    LE AWD-e
    I receive several variants of that phishing text each week. Yes Bob, you were foolish to respond to it.

    JeffD
     
  7. ChapmanF

    ChapmanF Senior Member

    Joined:
    Mar 30, 2008
    24,906
    16,213
    0
    Location:
    Indiana, USA
    Vehicle:
    2010 Prius
    Model:
    IV
    Late one night at a train station in Barcelona, I wanted to make a call at a pay phone (yes, it was that long ago), and something went wonky on the call, so I dialed the number shown right there on the phone for customer service and had a long conversation there, which included, oddly in retrospect, giving them a credit card number.

    About 40 seconds after hanging up, I thought "!!!" and went back and looked closely at the phone, and sure enough, the number I had called was on a plain paper sticker that someone had printed up and stuck on all the phones in the station.

    Got a shiny new credit card number thanks to that one. Bit inconvenient, being abroad at the time....
     
  8. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,663
    15,663
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    Is good. New credit card, no bogus charges.

    Bob Wilson
     
  9. Leadfoot J. McCoalroller

    Leadfoot J. McCoalroller Senior Member

    Joined:
    May 12, 2018
    7,431
    6,915
    1
    Location:
    Pennsylvania
    Vehicle:
    2018 Prius c
    Model:
    Two
    Athens 2004: the scam du jour was when somebody would ask to use your mobile phone- and then run away with it. We were wise to it and had leashes and lanyards attached. (Remember when mobile phones had attachments for those built in?)

    One guy tried it on me, I just held the phone up so he could see the leash. He shrugged and moved on right away.

    side note: that was also the last time/place I used a POTS modem.
     
  10. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,663
    15,663
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    Having fallen for a Trojan horse, it is time to reassess passwords. One hard requirement is they should be easily remembered by a 73 year old human but otherwise unique:
    1. Income accounts - these are the holiest and need hardest passwords. Examples are income accounts both deposit and source. Recommend individual passwords between deposit and source.
    2. Purchase accounts - these can only buy stuff and often have protective limits (aka., up to $50.) Examples are debit limited, credit card, and online purchase accounts (aka., Amazon, eBay.) A 'debit limited' account has no overdraft access other bank accounts and only holds what has been deposited. A shared account or single character, account identifier (i.e. "A" Amazon, "e" eBay ...)
    3. Information accounts - social media such as e-mail, Facebook, X/Twitter, and forums like PriusChat. A single password only risks an embarrassing post, no financial risk.
    4. passcode - four digit numeric codes like debit cards, car code, and smart phones. Individual codes.
    Guidelines:
    1. Reverse dates putting least significant digit first. So year 1969 becomes 9791. So MMDD becomes DDMM. Looking at B&N notation:
      1. YYyy -> [[1], [9,0], [0-9],[0-9]] ... choose significant but non-birth year
        • Life years makes the 3d digit [0, 4-9]
        • Historical dates expands to [0-2] or [5-3, 0-2] if dates in antiquity can be used
      2. MMDD -> [[01-12], [1-31]] ... choose non-birth date
      3. Recommend: [[0-9], [0-9], [1-31], [01-12]] ... yyDD or 10*10*31 ~= 3,100 guesses * 3! (order)
        • Bruit force, all 10,000 numbers 0000-9999
    2. Text part, four or more characters
      1. Easily remembered misspelled words
    3. Punctuation character(s)
    Two-part authentication is great but hindered by 'the device' and 'server software.' The closest we have is sending a code to a hopefully working cell phone. Broken or mislaid device and you are locked out.

    I will probably make an encrypted spreadsheet stored at two places and decrypt enabled by two devices.

    Bob Wilson
     
    #1130 bwilson4web, Oct 7, 2023
    Last edited: Oct 7, 2023
  11. John321

    John321 Senior Member

    Joined:
    Nov 16, 2018
    1,285
    1,276
    0
    Location:
    Kentucky
    Vehicle:
    2008 Prius
    Model:
    Two
    #1131 John321, Oct 7, 2023
    Last edited: Oct 7, 2023
  12. fuzzy1

    fuzzy1 Senior Member

    Joined:
    Feb 26, 2009
    17,557
    10,324
    90
    Location:
    Western Washington
    Vehicle:
    Other Hybrid
    Model:
    N/A
    My memory simply isn't good enough to keep track of all my needed unique passwords on essential accounts, with many different character and change frequency requirements. Too many password managers have been hacked. So all my passwords are stored on old fashioned paper and ink, vulnerable only to physical break-in, which these days is vastly less common than electronic break-ins, and from a far smaller universe of potential thieves.

    The physical list is getting quite ragged and needs a fresh rebuild. There is one electronic copy on an old laptop, created for printing purposes only after that machine was permanently retired from the internet and put into airplane mode with its wifi access codes deleted, and was never linked to the current wifi service. But that copy is now outdated and needs a refresh too.

    Browsers are configured to auto-login to non-critical accounts, such as PriusChat and news. But not to anything financial or medical.
     
    #1132 fuzzy1, Oct 7, 2023
    Last edited: Oct 7, 2023
  13. Mendel Leisk

    Mendel Leisk EGR Fanatic

    Joined:
    Oct 17, 2010
    56,675
    39,222
    80
    Location:
    Greater Vancouver, British Columbia, Canada
    Vehicle:
    2010 Prius
    Model:
    Touring
    I’m picturing you with quill and ink bottle.
     
    fuzzy1 likes this.
  14. fuzzy1

    fuzzy1 Senior Member

    Joined:
    Feb 26, 2009
    17,557
    10,324
    90
    Location:
    Western Washington
    Vehicle:
    Other Hybrid
    Model:
    N/A
    I'm not quite that old fashioned ...
     
    Mendel Leisk likes this.
  15. tochatihu

    tochatihu Senior Member

    Joined:
    Apr 10, 2004
    9,157
    3,562
    0
    Location:
    Kunming Yunnan China
    Vehicle:
    2001 Prius
  16. hill

    hill High Fiber Member

    Joined:
    Jun 23, 2005
    20,174
    8,353
    54
    Location:
    Montana & Nashville, TN
    Vehicle:
    2018 Chevy Volt
    Model:
    Premium
    One thing that is aggravating is the pants & shorts manufacturers dropping from 7 belt loops to 5. Really? Do overseas manufacturers really need to save that extra 2¢ per pair of pants? At least a couple domestic manufacturers haven't bought into the cheaping out on loops. It sometimes makes belts start to sag/wear prematurely ... & especially so - if you conceal carry, or hang other goodies from your belt. Stinking belt loops.
    ;)
    .
     
  17. bwilson4web

    bwilson4web BMW i3 and Model 3

    Joined:
    Nov 25, 2005
    27,663
    15,663
    0
    Location:
    Huntsville AL
    Vehicle:
    2018 Tesla Model 3
    Model:
    Prime Plus
    Suspenders.

    Bob Wilson
     
  18. ColoradoCrow

    ColoradoCrow Active Member

    Joined:
    Sep 2, 2019
    980
    398
    1
    Location:
    Leawood, KS
    Vehicle:
    2008 Prius
    Model:
    I
    I I have noticed that too... I stocked up on some 5.11 pants for summer and fall and Carharts for winter. I also adjust my IWB holster depending on my pants...Some options require a belly band style belt which avoids the need for belt loops all together. (ie swim trunks)
    KUHL makes some great options...and SNICKERS from the UK have great built in pockets.
     
  19. jdenenberg

    jdenenberg EE Professor

    Joined:
    Nov 21, 2005
    3,872
    1,871
    1
    Location:
    Trumbull, CT
    Vehicle:
    2020 Prius
    Model:
    LE AWD-e
    They go with your flannel plaid shirts.

    JeffD
     
  20. Stevewoods

    Stevewoods Senior Member

    Joined:
    Jun 10, 2014
    651
    1,023
    0
    Location:
    Seattle, WA
    Vehicle:
    2008 Prius
    Model:
    II
    Button suspenders, none of those silly clip-ons.