Mastodawn

Scott Drake Dec 20, 2024

Codeberg Announcements

🔔 Heads-up: There is currently a #phishing campaign targeting #Codeberg users.

If you receive a notification that insults you and your project for poor code quality, combined with an offer to "fix" the problems when you send some money, please ignore and report to us: Mention "@moderation" in response to the issue or forward the email to [email protected].

We are trying to stay ahead of the noise before the notifications are sent.

Codeberg Announcements Dec 20, 2024

If you receive in-app notifications which lead to 404 pages or threads that don't contain new messages, it is also likely that they have been cleaned up.

Unfortunately, it is currently very difficult to also remove the notifications when deleting spam users.

We apologize for the inconvenience.

Hint: If "security researchers" or "computer experts" link to an http-only website, you can almost always consider it a scam.

EDIT FOR CLARITY: The spammer is impersonating a researcher to smear them.

Andre_601 🇨🇭

@Codeberg Kinda wonder how some of these posts look like...

esensar Dec 20, 2024

@andre_601 @Codeberg
Here is mine if you are interested 😄

esensar Dec 20, 2024

@andre_601 @Codeberg

Alt text continued: So, here's the deal. I'll offer you a tutoring session for $50. We can go over your code, and I'll show you how to fix those security vulnerabilities and write some decent code. You can PayPal me at https paypal me/darkmage.

Check out my resume at http://notevildojo.com/resume.pdf. I'm the real deal, esensar. Let me help you take your coding skills to the next level.

Kind Regards,
Michael "mikedesu" Bell
notevildojo.com

Doable · Florian Dec 20, 2024

@Codeberg the issue already got deleted, but I received the issue two times for https://codeberg.org/florian-obernberger/doable

Jan Wildeboer 😷

@Codeberg I saw one of those and was looking for a "report spam" button ;)

Harald Dec 20, 2024

@Codeberg Insulting my code and asking money to fix it must be the most stupid scamming scheme on the planet.🤣 🤦‍♀️

Anyway thanks for the warning.

🐈‍⬛David Sommerseth Dec 20, 2024

@HaraldKi @Codeberg

It smells more like a smearing campaign to make a selected security researcher look bad. It's already been going on for a bit on GH, targeting the same individual.

S1m Dec 20, 2024

@Codeberg Thank you for the fast actions 👍

@Codeberg I was just about to report it. But then the issues were already deleted. Thanks for the awesome moderation :D

That "Robbie" guy Dec 20, 2024

@Codeberg I'm glad I saw this message before I saw the email I got 😂 Thanks for taking care of it so quickly! 💖

Tenacity Audio Editor Dec 20, 2024

@Codeberg We have received one of these issues but it was deleted, likely by your moderation team.

We believe that this _has_ to be a bot or something. As @be said, it seemed that they were subject to another impersonation attempt on GitHub. Also, the latest @gperson saw (hi again) was on your CI feedback repo which...doesn't contain any code.

EaterOfSnacks Dec 20, 2024

@Codeberg Anyone wanting to improve the crap code in my projects is welcome to (checks drawer) a couple of 100 drachma notes in indifferent condition. Might have a Victorian halfpenny or two. Send the pillocks my way...

auntie monkey Dec 21, 2024

@Codeberg this is the xz attack all over again

Charles Dec 23, 2024

@Codeberg 🤣🤣🤣🤣🤣🤣🤣🤣🤣🤣🤣🤣🤣🤣