Found this notification on my vpn after reviewing malicious sites this morning. I haven’t uploaded anything to the perchance site. I may be wrong but it appears something was captured from my system without my permission. Thoughts?

  • @perchanceMEnglish
    11 day ago

    Possible explanation: https://www.reddit.com/r/perchance/comments/1isr339/comment/mdyvhnl

    But actually, looking at the URL just now, it’s the “cookie popup” script which is used for GDPR type stuff, which is legally required in the European Union: https://user-uploads.perchance.org/file/63c85ff7ce3ecc0323e0bbd555078fad.js This script is used at the platform level - not within any particular generator, so it’s not specific to the story generator.

    I’m not sure why NordVPN has flagged it. I have NordVPN and I haven’t received any warnings for this (but I’m not in the EU - maybe that matters). Either way, it should be fine to just block it.

    • @ngamarkOPEnglish
      11 day ago

      I appreciate the information. Is there any chance they’ve copied or captured a story I’ve written? I usually write them and then delete them. Also I noted in the header there is a line item that states “report to:” and it appears to poing to cloudfare. Thoughts.

      • @perchanceMEnglish
        122 hours ago

        No, Perchance uses an iframe for sandboxing so the ads/CMP/etc. cannot see any data you input/generate.

        Copy-pasting a paragraph from a comment of mine on another thread:

        As you probably know, the AI plugin servers are funded by ads. Perchance in general doesn’t have any ads, and has always been completely free, but the AI plugins are way too expensive to fund out of my own bank account. So if you’re not logged in, you’ll see ads on generators that use AI plugins. I figured it’s worth mentioning here that unlike basically every other ad-funded site on the internet, Perchance does not trust ads. Perchance has a sand-boxed separation between the actual generator/page contents (which live in a “iframe” - it’s basically like a separate browser tab embedded within the page), and the place where ad code runs – so ads cannot look at your chat/text/image/etc. data in order to guess at more relevant ads. Perchance uses a very reputable advertising company (same one used by Reuters and Aljazeera and several other large companies) so the likelihood of shady ad tech is already extremely low, but there’s no need for any trust here, thanks to the sand-boxing that Perchance has. So, in terms of showing you more relevant ads, all they can possibly see is the URL of the page that you’re on. That’s the only thing that’s exposed to ad serving algorithms by visiting a Perchance page, no matter how much information you input into a Perchance generator/page.