Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fluffytail.org/objects/53f25d9c-4109-435d-a0a1-983be6730cba">Phantasm (phnt@fluffytail.org)'s status on Tuesday, 29-Apr-2025 16:27:57 JST</a><a href="https://fluffytail.org/users/phnt" title="phnt@fluffytail.org"><img src="https://gnusocial.jp/avatar/158739-48-20230808204705.webp" width="48" height="48" alt="Phantasm" style="position: absolute; left: 0; top: 0;">Phantasm</a><div><a href="https://fluffytail.org/objects/17844ca4-8c91-43d0-9e90-6ffc189c8e92" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article>It doesn't even seem to collect the email address when you first go there. There's a uid param in the phishing link that sets the username field automatically and then it works.<br><br>Of course it first says "login failed" after a few seconds and after the second try, it redirects to the domain from the email.<br><a href="https://upload.fluffytail.org/media/fd/8d/03/fd8d03ce746842ab81b489200cc22dac3bc3f6446c3fe56c607f677f50ad676e.png?name=image.png">manually typed address</a><br><a href="https://upload.fluffytail.org/media/d8/96/aa/d896aa5463e1d22ce7ec396666651d42b5aba46cc32f0295d2ae0311c9e9e8a9.png?name=image.png">manually typed address</a><br><a href="https://upload.fluffytail.org/media/8f/ad/aa/8fadaaa584ed041653e2f6c254605fd081987e48e3b8a137a484054d7c3663a0.png?name=image.png">with ?uid set</a></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4973078#notice-9744773">In conversation</a><time datetime="2025-04-29T16:27:57+09:00" title="Tuesday, 29-Apr-2025 16:27:57 JST">about 7 days ago</time> <span>from <span><a href="https://fluffytail.org/objects/53f25d9c-4109-435d-a0a1-983be6730cba" rel="external" title="Sent from fluffytail.org via ActivityPub">fluffytail.org</a></span></span><a href="https://fluffytail.org/objects/53f25d9c-4109-435d-a0a1-983be6730cba">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/4543047">manually typed address</a></label><br><a href="https://upload.fluffytail.org/media/fd/8d/03/fd8d03ce746842ab81b489200cc22dac3bc3f6446c3fe56c607f677f50ad676e.png?name=image.png" rel="external">https://upload.fluffytail.org/media/fd/8d/03/fd8d03ce746842ab81b489200cc22dac3bc3f6446c3fe56c607f677f50ad676e.png?name=image.png</a></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/4543048">manually typed address</a></label><br><a href="https://upload.fluffytail.org/media/d8/96/aa/d896aa5463e1d22ce7ec396666651d42b5aba46cc32f0295d2ae0311c9e9e8a9.png?name=image.png" rel="external">https://upload.fluffytail.org/media/d8/96/aa/d896aa5463e1d22ce7ec396666651d42b5aba46cc32f0295d2ae0311c9e9e8a9.png?name=image.png</a></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/4543049">with ?uid set</a></label><br><a href="https://upload.fluffytail.org/media/8f/ad/aa/8fadaaa584ed041653e2f6c254605fd081987e48e3b8a137a484054d7c3663a0.png?name=image.png" rel="external">https://upload.fluffytail.org/media/8f/ad/aa/8fadaaa584ed041653e2f6c254605fd081987e48e3b8a137a484054d7c3663a0.png?name=image.png</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Phantasm (phnt@fluffytail.org)'s status on Tuesday, 29-Apr-2025 16:27:57 JSTPhantasm
in reply to
- Phantasm
It doesn't even seem to collect the email address when you first go there. There's a uid param in the phishing link that sets the username field automatically and then it works.

Of course it first says "login failed" after a few seconds and after the second try, it redirects to the domain from the email.
manually typed address
manually typed address
with ?uid set
In conversationabout 7 days ago from fluffytail.orgpermalink
Attachments

Public

Embed Notice

HTML Code

Corresponding Notice