They were introduced to encrypt the "last mile" because Internet Service Providers were replacing ads in webpages and, in the other direction, inserting fake clicks.

DV has destroyed the internet. People loose their ebank savings and companies get ransomwared; phishing is dead simple. EDIW/EUDIW will become an identity fraud disaster (because of AitM phishing atracks).

Even the name "Let's Encrypt" is wrong for a CSP: nobody needs a certificate to encrypt a connection. The primary purpose of a certificate is AUTHENTICATION (of the owner of the private key, in this case the website).

However, for human beings, just a domain name simply does not provide reliable identification information. It renders impersonation a peace of cake.

Decent online authentication is HARD. Get used to it instead of denying it.

REASONS/EXAMPLES

Troy Hunt fell in the DV trap: https://infosec.exchange/@ErikvanStraten/114222237036021070

Google (and Troy Hunt!) killed non-DV certs (for profit) because of the stripe.com PoC. Now Chrome does not give you any more info than what Google argumented: https://infosec.exchange/@ErikvanStraten/114224682101772569

https:⧸⧸cancel-google.com/captcha was live yesterday: https://infosec.exchange/@ErikvanStraten/114224264440704546

Stop phishing proposal: https://infosec.exchange/@ErikvanStraten/113079966331873386

Lots of reasons why LE sucks:
https://infosec.exchange/@ErikvanStraten/112914047006977222 (corrected link 09:20 UTC)

This website stopped registering junk .bond domain names, probably because there were too many every day (the last page I found): https://newly-registered-domains.abtdomain.com/2024-08-15-bond-newly-registered-domains-part-1/. However, this gang is still active, open the RELATIONS tab in https://www.virustotal.com/gui/ip-address/13.248.197.209/relations. You have to multiply the number of LE certs by approx. 5 because they also register subdomains and don't use wildcard certs. Source: https://www.bleepingcomputer.com/news/security/revolver-rabbit-gang-registers-500-000-domains-for-malware-campaigns/

@EUCommission @letsencrypt @nlnet

Screenshot from the top of https://www.virustotal.com/gui/ip-address/13.248.197.209/relations

The page had already redreshed when I copied the following domain names, so this is just to get an idea:

tiles-35312.bond
sleepwear-14660.bond
prostate-cancer-treatment-95682.bond
diet-98948.bond
electric-cars-94009.bond
packing-jobs-44721.bond
dental-implants-48408.bond
mattress-19892.bond
breast-reduction-mammoplasty-surgery-24489.bond
dental-implants-76071.bond
rv-camper-motorhomes-90728.bond
roofing-services-61345.bond
maid-service-26172.bond

#Authentication #Impersonation #Spoofing

**Auscandoc** @auscandoc@med-mastodon.com · 6d

Auscandoc @auscandoc@med-mastodon.com

So that’s where all the #NIH money went

Spam email purporting that Donald Trump has given me a $7.5M grant.

#Spam #DonaldTrump

Replied in thread

**AJ Sadauskas** @ajsadauskas@vivaldi.net · 6d *

6d *

AJ Sadauskas @ajsadauskas@vivaldi.net

@maxleibman @andrewfeeney Don't worry, there's no shortage of Nicoles who you can call the Fediverse Chick :D

They're all proud Polish girls from Toronto (29 y/o).

Urban legend says that it all started because of a PhD student's ethically questionable cloning experiment that's gone horribly awry.

There's now whole university lectures filled entirely with Nicoles who are taking the pre-health sciences program at George Brown College.

It's an absolute nightmare marking essays. The poor lecturers don't know which Fediverse Chick to assign the grade to.

And forget about recording tutorial attendance. The lecturer calls out "Nicole" and the whole room yells back "present"!

They're all hoping to get into the medical field someday!

#Fediverse #Mastodon #spam

Replied in thread

**Petra van Cronenburg** @NatureMC@mastodon.online · Mar 24 *

Mar 24 *

Petra van Cronenburg @NatureMC@mastodon.online

@staff The above post: important for all who experience #spam #scam #bot attacks or #Nicole #fedichick and #admin #moderators #moderation of #Mastodon #instances #servers

**Dgar** @dgar@aus.social · Mar 24

Mar 24

Dgar @dgar@aus.social

Okay then. #Spam

Feditext screenshot of Mastodon notifications.
Three profiles have recently followed, all with the same swimsuit pinup picture.

**Billy Smith** @BillySmith@social.coop · Mar 24

Mar 24

Billy Smith @BillySmith@social.coop

I'm getting follow-requests from AI-spambots.

Yes, i had to block a couple of NicoleFedichick instances, but some of them are more subtle than that.

It's now a good idea to set your Follow-requests to verify-only, so you don't end up feeding all your conversations to spammers.

#aispam #ai #spam

**Martin Nutty** @mnutty@mastodon.ie · Mar 24

Mar 24

Martin Nutty @mnutty@mastodon.ie

Any other 60 YOL types being spammed by lots of very attractive women followers?

Like I know I’m super attractive and everything but I didn’t think I exuded that kind of #SilverFox magnetism

Photo of Martin Nutty with short gray hair, light skin, and a playful expression is sitting in a car, wearing a navy blue plaid polo shirt. He is rolling his eyes upward in an exaggerated manner, creating a comical, exasperated look. The seatbelt is fastened across his chest, and the car’s interior, including a handle on the ceiling, is visible in the background.

#Spam #SpamBot #Spamming

**Jeri Dansky** @jeridansky@sfba.social · Mar 24 *

Mar 24 *

Jeri Dansky @jeridansky@sfba.social

Just a reminder that if you're getting DMs from Nicole or you're getting new barely-dressed followers who want you to follow them elsewhere: Please report these so your moderators can take action and suspend their accounts. These aren't visible to us unless they get reported.

#Mastodon #spam #Nicole

Replied in thread

**Erik van Straten** @ErikvanStraten@infosec.exchange · Mar 23 *

Mar 23 *

Erik van Straten @ErikvanStraten@infosec.exchange

Jopie Jozep (or is it "Jozep Jopie") is not just #Hasbara, she is (now) actually included in the Auschwitz victims database (https://victims.auschwitz.org/victims/107595) with full details (not)

P.S. It was too much work for the Zionists to add Isaac Futerman (https://mastodon.world/@auschwitzmuseum/114209508764444183 - spammed on Mar 23, 2025, 04:00 AM) to their victims database, as https://victims.auschwitz.org/victims?pattern=Isaac+Futerman now reads:
❝
Unfortunately, in the digital collection of names of victims of the Nazi German Concentration and Extermination Camp Auschwitz information about the person you were looking for was not found.
[...]
❞

Text in https://victims.auschwitz.org/victims/107595

Jozep Jopie

Date of Birth : 23-03-1939

Place of Birth : unknown

Profession: unknown

Fate: unknown

Photo: unknown (a grey silhouette of a man is shown)

#FrancescaAlbaneseIsRight #Zionists #Propaganda

**Paul Chambers** @paul@oldfriends.live · Mar 22

Mar 22

Paul Chambers @paul@oldfriends.live

Looks like Nicole, #FediverseChick, is now going with usernames beginning with "neckerchief" #MastoAdmin #Spam #Fediblock

neckerchief23@ploen.social

So far, the dozen or so my instance has blocked all started with 'nicole....'

**Jeff Sikes** @box464@mastodon.social · Mar 22

Mar 22

Jeff Sikes @box464@mastodon.social

Lots of bikini women following me today. Guess it’s swimsuit season!

#Spam #Bot

**Fedi.Tips** @FediTips@social.growyourown.services · Mar 21 *

Mar 21 *

Fedi.Tips @FediTips@social.growyourown.services

If you get a DM saying "call me the Fediverse chick", it's a spam. Don't click the links, but DO report it!

Reports from users are really important, especially if they are about spam DMs because no one else can see the spam except the user.

You can report posts by clicking ⋯ on the post and selecting "Report". When you report it, make sure to select the option to forward the report to the server it came from so that the admin there can delete the spammer's account.

#FediTips #Spam

**Tommi** @tommi@pan.rent · Mar 21

Mar 21

Tommi @tommi@pan.rent

I was very bummed because Fedi #spam seldom reaches our tiny instance in a corner of the #Fediverse, BUT the #FediverseChick just messaged me!

I feel so blessed!

#FediSpam

**Miguel Afonso Caetano** @remixtures@tldr.nettime.org · Mar 19

Mar 19

Miguel Afonso Caetano @remixtures@tldr.nettime.org

"The best way to think of the slop and spam that generative AI enables is as a brute force attack on the algorithms that control the internet and which govern how a large segment of the public interprets the nature of reality. It is not just that people making AI slop are spamming the internet, it’s that the intended “audience” of AI slop is social media and search algorithms, not human beings.

What this means, and what I have already seen on my own timelines, is that human-created content is getting almost entirely drowned out by AI-generated content because of the sheer amount of it. On top of the quantity of AI slop, because AI-generated content can be easily tailored to whatever is performing on a platform at any given moment, there is a near total collapse of the information ecosystem and thus of "reality" online. I no longer see almost anything real on my Instagram Reels anymore, and, as I have often reported, many users seem to have completely lost the ability to tell what is real and what is fake, or simply do not care anymore.

There is a dual problem with this: It not only floods the internet with shit, crowding out human-created content that real people spend time making, but the very nature of AI slop means it evolves faster than human-created content can, so any time an algorithm is tweaked, the AI spammers can find the weakness in that algorithm and exploit it."

https://www.404media.co/ai-slop-is-a-brute-force-attack-on-the-algorithms-that-control-reality/

404 Media · Mar 17AI Slop Is a Brute Force Attack on the Algorithms That Control RealityGenerative AI spammers are brute forcing the internet, and it is working.

#AI #GenerativeAI #AISlop