SS7 is vulnerable to attack. However, the types off attacks on the video don’t affect Signal as it requires a pin. (Make sure you set your pin to something strong and secure)

        • @[email protected]
          link
          fedilink
          English
          102 months ago

          I don’t particularly like Linus, but he was bearable in this video. As someone who assumed this was a SIM swap, I was genuinely as confused as he was playing it up when he was able to place calls but not receive them. That was really interesting.

          • @Linkerbaan
            link
            52 months ago

            Linus is great. Sure he has his flaws but of all the flawed people he doesnt have horrible ones.

          • @[email protected]
            link
            fedilink
            12 months ago

            I have seen Linus straight up lie about things and distort benchmarks to make it seem like companies they get money from make better products than they do. Fuck that guy.

    • Corgana
      link
      fedilink
      262 months ago

      when I read comments like these it makes me realize that maybe all the money flowing to OpenAI isn’t folly and there really are people out there trying to tl;dr their own lives

        • Corgana
          link
          fedilink
          52 months ago

          What feels alien to me is the idea that experiencing a creative work is itself a means to an end.

          I prefer to digest text too, but still would choose to taste a meal than read a typed up printout of the flavors it contains.

          • @[email protected]
            link
            fedilink
            6
            edit-2
            2 months ago

            unfortunately, sometimes the chef likes to ascend from a golden staircase first to tell you about who they are and what the meal means to them, whilst passionately discussing their good friend’s VPN company, before finally, dramatically, letting you actually sit down and eat.

            It wasn’t always like that. I remember when dishes were thrown fresh out of the kitchen without even a “heads up” call. Those were good meals.

            • Corgana
              link
              fedilink
              12 months ago

              Exactly! Why go to the first restaurant (video) at all if you don’t like the experience? You’re really going to wait outside the door of the first one asking the people leaving what the food tastes like? How is that better than the restaurant (videos) you do like?

              • @[email protected]
                link
                fedilink
                22 months ago

                Because when I told the taxi driver that I was “a bit peckish”, rather than take me to a nice greasy spoon where I can swallow a nice meal in 5 minutes, pay $5 and leave… he took me to the Ritz where I had to wait for a waiter to talk my ear off about the pastrami whilst being presented a wine menu.

                I ain’t got time for that, I just wanted to satiate my hunger!

                • Corgana
                  link
                  fedilink
                  22 months ago

                  We seem to agree that actually eating real food at a greasy spoon is preferable to reading a description of the dining experience offered at the Ritz. But your replies give me the impression we disagree?

          • @[email protected]
            link
            fedilink
            42 months ago

            I prefer to digest text too, but still would choose to taste a meal than read a typed up printout of the flavors it contains.

            If I showed up at a restaurant and was presented with a menu that didn’t describe anything about the dishes on offer, I’d be pretty disappointed.

            Point being that we have limited time and a nearly limitless amount of options for how to spend it. Text summaries are a tool we can use to decide whether something is worth our time (and money) investment if we’re on the fence about it.

            • Corgana
              link
              fedilink
              0
              edit-2
              2 months ago

              A menu is not a creative work it’s a means to convey information. Veritasium is not reading wikipedia articles on screen, he’s creating an original work.

              Listen I am not criticizing how you choose to enjoy your time I just find the entire concept of finding the experience of reading a text summary to be more to be more rewarding than experiencing the thing itself to be alien.

      • @sazey
        link
        4
        edit-2
        2 months ago

        I don’t trust LLMs to do tldrs for me and it certainly doesn’t provide a rich nuance or spark discussions like asking a human would do.

        (I say that with 7 comments in the thread lol but you get my point I’m sure)

    • Caveman
      link
      202 months ago

      SS7 protocol for 2G and 3G is vulnerable to man in the middle attack, easy to spy on people with. They use a walled garden approach al the primary defence mechanism and you can gain access through in for the low low price of couple of thousands of USD.

      Couple of exploits are intercepting or monitoring calls and texts and triangulating position by checking what cell towers are in range.

      • @[email protected]
        link
        fedilink
        72 months ago

        I remember the analog days where a few keystrokes on an Ericson phone were all you needed to start listening to private conversations on the cell tower you were connected to.

      • @[email protected]
        link
        fedilink
        -32 months ago

        My rule of thumb that grimaces in the thumbnail mean the video is playing on emotions instead of facts (i.e. is crap) has another match.

  • The 8232 Project
    link
    fedilink
    132 months ago

    I’ve never had a cellular provider for this reason among others. Here is NBTV’s video with some alternatives to directly having a SIM card, which I combine with MySudo to get phone numbers as well.

    • @Scolding7300
      link
      102 months ago

      What’s your experience with using mysudo/voip numbers in terms of services accepting them (e.g. Google)? And socially, can you do regular calls with these numbers? Any audio delays?

      • @Scolding7300
        link
        12 months ago

        What’s your experience with using mysudo/voip numbers in terms of services accepting them (e.g. Google)? And socially, can you do regular calls with these numbers? Any audio delays?

        (copied my comment for the top context comment but the other person hasn’t answered yet, wanted to get some info on these kinds of services first hand)

        • @[email protected]
          link
          fedilink
          22 months ago

          Haven’t used it [silent.link] myself. All I know is that all (or some) plans they offer include only incomming-calls, not outgoing. But good point you make about delays. That’s important. Haven’t thought about that myself.

          I’m not too versed in it myself yet. You were asking about these services in general, right? Since you wrote “voip numbers”. I’ll keep tabs on your other comment then

          • @Scolding7300
            link
            12 months ago

            Right. I’m considering trying out voip numbers but concerned about these disadvantages. Not that I call much anyways, just don’t want to make a frustrating calling experience more frustrating lol

  • @Mango
    link
    102 months ago

    Super Saiyan 7 is actually invincible.

  • @[email protected]
    link
    fedilink
    12 months ago

    PSA: if your financial institution/government/<other website> is using SMS codes (aka PSTN MFA) for multi-factor authentication they are practically worthless against a determined attacker who can use SIM swap or an SS7 attack to obtain the code. Basically you are secured by a single factor, your password. If your password is compromised it may be sold via black hat marketplaces and purchased by an attacker who would then likely attempt to break that second factor.

    The best way to protect yourself is to use a unique password; a password manager especially helps with this. Sometimes institutions will offer “Authenticator” (TOTP) as a second factor, or PassKey authentication, both secure alternatives to SMS codes.

    Here in Aus I’m working with Electronic Frontiers Australia to try and force some change within government and financial institutions (via the financial regulator). Most banks here use SMS codes and occasionally offer a proprietary app. One of the well-known international banks, ING Bank, even uses a 4 pin code to login to their online banking portal. 😖

    Unfortunately SMS codes are a legacy left from old technology and a lack of understanding or resourcing by organisations that implement it. Authenticator/TOTP tokens have been around for 16 years (and standardised for 13 years), and PassKeys are relatively newer. There is a learning curve but at the very least every organisation should at least provide either TOTP or PassKeys as an option for security-minded users.

  • @[email protected]
    link
    fedilink
    -12 months ago

    Would GrapheneOS with default settings be immune since 2G is disabled and networks don’t have 3G anymore?

  • @boaratio
    link
    -62 months ago

    Can everyone please stop linking to Linus? He’s a YouTube huckster.

    • Possibly linuxOP
      link
      fedilink
      English
      142 months ago

      For one this isn’t a video by LTT.

      Secondly not everyone hates LTT like you do