stux⚡️Dec 30, 2022

⚠️ WARNING! ⚠️

I just received this email in a catch-all that was addressed to a user. Mastodon does NOT send such mails and this leads to a malicious login page!

Please make sure you are on the correct instance URL before logging in!

Also make sure the emails are send from the instance you are on! Often this email can be found on the /about page

#Mastodon

Show threadspitecho 
@stux Mental note: Never click links in emails. No, never click anything.
Dec 30, 2022 at 6:49pmWeb
Show threadCharlie StrossDec 31, 2022
@spitecho @stux Friends don't let friends click. Interactive interfaces are bad! Sensible, serious, security-aware users submit batch jobs on punched card decks and wait for the results of the overnight run to arrive in the post the next day.
Show threadKevin RiggleDec 31, 2022
@spitecho @stux a good password manager (such as 1Password) will flag this before you’re owned