If I was a boss and an employee realised they'd fallen for a phishing scam and self reported it, I probably wouldn't even discipline them much at all and would take note of who they were for future promotions into a position where accountability and transparency are critical. I'd rather an honest and accountable project lead with highly competent technical leads assisting than someone who was more competent but would likely bullshit me.
The closest thing to a punishment I'd give would be some extra training for spotting/detecting phishing attempts. It'd be paid as well, so they don't lose their wage for the day(s).
Guarantee that person will double check for life. If you fire them there’s a high chance the next person to come in won’t have that experience and will break something similar. If it’s not gross incompetence, mistakes are often the best training an employee can receive.
The Reddit employee really did the right thing self reporting instead of lying or trying it deflect responsibility, major respect for that guy they did a lot more than a lot of people would do in a situation like this (not out of malice though most likely out of embarrassment and fear) it took a lot of guts on their part and I appreciate their honesty.
It has a lot to do with how your company's management handles these situations. If their reaction is to immediately fire the employee who was phished, NO ONE will report anything.
It's a big W in general when a company can promote a culture that encourages self reporting of incidents. Assuring workers that they won't get in trouble for reporting accidents, near misses, and other mistakes can go a long way in improving working procedures to prevent stuff like that from happening.
It's not even in tech. If you mess up in any workplace and you don't know how to quickly and efficiently undo all the damage, get more experienced coworkers. The sooner you do, the sooner everything will be fixed, and more likely to avoid unnecessary problems.
@@TheGuyWhoIsSitting The depends on how bad the thing was and also how toxic the company is. I work for a company where if there's a bug, our clients can lose millions fairly quickly. Nobody gets blamed when there's a critical bug though, because our process is like this: 1. Product manager defines feature 2. Developers start writing code and automated tested 3. A different developer reviews the code 4. Tests run and have to pass 5. Manual testing by a tester 6. If all the above steps 'pass' then the code is merged and eventually a release is done. If a bug happens who do you blame? Were the requirements badly defined? If so then why didn't the rest of the team raise this in planning? Was the code implemented incorrectly? If that's the case then why did the reviewing developer not flag it? Why didn't the automated tests catch it? Why didn't the manual tester think of this edge case? So you see, it becomes very difficult to assign blame to a person. Instead we try to focus on how to avoid it happening in the future. It's a much nicer mentality than blaming people. We do something similar with security where people get training every year and where people have fucked up in the past, automated protections were placed in response to such an event to make it harder to fuck up in the future.
@@TheGuyWhoIsSitting that sounds like a good way to create a revolving door of inexperienced employees. They're taking the people who've seen and now understand the repercussions of what not to do and removed it from production.
A common policy in company IT security is to let employees swap out a generic password with something personal like all the first letters of words in a line of piece of musik they like or something. You'd be shocked how effective this is, especially with longer passwords...for every character added the time it takes to crack it scales like exponentially
Entropy is king! A long enough password even a dictionary attack comes off the table, the key really is to force the hash cracker to brute force and well, unless, you have a couple of hundred years and access to a supercomputer, GG! 100% agree with you!
As someone who works in IT, having someone self-report is a best case scenario here. You save me and those like me many hours of trying to sift through bullshit. Yes - you messed up, but you dodge any and all ire from me because you're providing me the info I need to resolve the issue. IT is problem solving, and when the problem is up front and center, it makes solving the problem much, much faster.
I supervised a call center for a Fortune 500 bank, and we would tell people a phishing test email would come from HQ to see, even when explicitly told how many frontline agents would fall for it, and it would be way more than most people would think.
@@TheVincenzoGaming The bots can now predict when you are gonna comment on something and summon a reply beforehand with their spacetime bending quantum computer.
2FA saves lives. My old, abandoned discord account was recently accessed. My heart skipped a beat but thankfully Discord asks for verification before letting you in. So my old shit wasn't leaked, thank god.
@@codingfeature3684 Honesty is the greatest virtue for a reason. Literally EVERY time I try to sneak something by someone, it makes things worse eventually. Likewise, I ratted on myself for some dumb stunt in high school, and my principal literally told me "If we figured this out by checking cameras, you would be expelled." If I could have only one thing, it would be honesty.
issue with self reporting is that many companies have this very toxic idea that people cant learn from mistakes, so they'll just fire that person on the spot. idk if reddits like that, but if they are, i give a helluva lot more shit about starvation than some data.
"some data" that could include sensitive data if Reddit has bad password management, and people do use the same password in a lot of areas sometimes, including their bank account. So people could lose money because of that "some data".
@@nikkiofthevalley dude, i dont give a fuck. if a company is gonna fire me for owning up to my mistakes, i wont own up. dont get mad at me, get mad at whoever decided everyone who makes a mistake should be fired on the spot.
I'm sure Reddit has an HR, financial, etc department. Just because someone is working at Reddit doesn't mean they are in IT & aware of these scams. I work at a place where they started running drills & I accidentally fell for it when they first started doing it a couple years ago & I work in the IT department.
most roles dont need external email, internal is fine and just make exceptions for particular domains, people are too dumb. You have to just lock it down.
They need to get rid of the "trending now" page. I don't wanna see shit that goes on today/this week (especially when I've blocked half the shit that comes up). I wanna just view the reddits I wanna view.
The best way to never get phished is to never click on an email link and enter your credentials. If I ever get an email from some company I always manually enter the URL and log into my account that way.
what a great example of employee responsibility and transparency. Kudos to that employee who self-reported their mistake and prevented a potentially disastrous outcome. It's not often you see such honesty and integrity in the workplace. Hats off to Reddit's quick response and great security team!
especially at night when i forgot to turn down my volume and i just have to listen to Muta's maniacally laughing while I frantically tried to turn down the volume. Did he set up the camera, and then began laughing sinisterly? or did he just laugh the whole time? i never know, and im too scared to know.
I rarely use reddit but it has been handy for finding obscure information I can't find in a search engine. It's a pretty interesting repository of data. I'm pleased with how the employee and reddit handled the situation. It's so rare to see someone take ownership for their own fuck up. It's refreshing. They're only human, mistakes happen, and they were solid enough to admit fault and take steps to fix the situation before it got out of hand. I could only imagine the chaos if they were dodgy and tried to cover it up.
Reddit is the lawless ghetto of the Internet. Don't bother chatting there, its nothing but reposts and dogpiling onto other more worthy websites. The Puff pieces and clickbots alone will make you want to vomit. Its Tor equivalent Dread is supposedly much better which accounts for the recent drop in quality.
i dunno if this already exists, i was wonder mr. muta, if u could make a simple personal security tutorial or series of videos for us plebs? i am reaching the point where i need to update my security cuz im growing having more accounts, more financial incentives to keep safe etc. and you mention so many good practices but i was wonddering if you could order then in like increasing difficulty or utility. for example, i feel like having a good password would be step one and like step 2 would be making good passwords and in those steps, using a password manager. then comes all the other stuff. i undo, just wanted to put my thoughts out there before i forget cuz i thought it would be a good idea. thanks for all the love muta. keep safe!
I work for an oil and gas company, I love how sometimes they send out “congrats employees you won something something click link and enter employee # to claim it” and it you click it it won’t open and you instantly get a “how to see avoid scam/fishing class has been adding to your training, complete by this date and inform supervisor.” It hasn’t gotten me yet lol
You know you're an NPC when you've left this same comment for the trillionth time about something that's in every single video and you still use the term "based" unironically
I work in IT and I couldn’t see any of our users ever self-reporting an issue. In fact, they would probably argue it if asked. Bravo to that Reddit employee!
The employee who self-reported probably recognized his or her mistake immediately. They also realized that their computer was the gateway, and that in any investigation, that fact would be found out anyway. Much respect to him or her anyway for stepping up and stopping a tsunami wave of hacking at Reddit. Good to see responsibility, somewhere on the internet.
What I find more impressive about this isn't just that the employee recognised their mistake and had the courage to come forward, but also that the company gave the employee the trust that they could come forward with something like this. In most companies a lot of employees wouldn't tell anyone about a mistake like that because if it was discovered that they made such mistake they would get fired immediately, so that means that Reditt actually does the good and humane thing that is to realise that humans make mistakes and don't punish their employees (at least not harshly) for fixable mistakes. This is what all companies should be like, but we all know that expecting that in today's world is a fantasy.
My medical insurance group sent me a letter saying that nearly the exact same thing happened to their systems, and that it occurred at around the same time. I'm now suspicious that these events may be related.
Makes sense, alot of scammers and hackers opt for a "throw sh*t at the wall and some will stick" approach to getting what they want. Much like fishing, phishing isn't exclusively a single "hook" game. Sometimes, they cast a wide "net", by which I mean they have a large number of potential targets, and hit them all with the same strategy, usually at the same time. When an attack on 1 company turns out successful, often enough you'll find that several have been targeted.
I had to submit testing code to the production server because, for what ever reason, AWS SAM(running AWS Lambda locally) wouldn't take my updated code or just decided to error the fuck out. After hours of deleting cache files, configs, and reinstalling, with no results, I sent it to the production server, and it worked fine.
Something similar happened to the company I work for (international company). Some ransomware deployed, some data stolen, some other things. Employees went through phishing, spear-phishing, smishing and all other -ishing training. We now get periodic "tests" from the security team, and should you fail by clicking a link, you have years of re-training ahead of you.....
@@Ehh..... That and in those 2 years many of these companies have given the general public good reason to have strong discourse in the way they conduct business or communicate with the masses... People have been lied too and stepped on hard. Now finally starting to figure out it's not that hard to fight back when it's not just one hopeless soul running in circles.
Yeah the IT team aint gonna be happy you fell for a phishing scam, but reporting that quickly is best case. Good for that employee hopefully they give him a golden doodle star for their efforts and then make them complete a security evolution/training so they don't fuck up again
That one time in the early 2000s when I was put on a website and accidentally deleted Tyson Hesse's entire SONIC ARGH page, spending the entire night re-creating it from scratch hoping nobody would notice because every update I made was LIVE.
I love the bit about phone security: people thinking their phones are completely inaccessible because they can use some form of identifier that you don't input into a keypad. I once had someone come to me with his new phone saying "this uses a VOICE password, you'll never get in" he then proceeded to say "password" into the mic to unlock it, locked it again and said "try it, you won't get in" Unfortunately for him, i imitate voices for shits and giggles all the time, I said password in a voice vaguely like his just once and the phone opened. Moral of the story: don't trust shoddy self-identifier security on phones, give it all the padlocks in the world.
I was just remembering the time a bunch of us at a certain electricians school all had our phones hacked broken just so someone could hack the office printer. What a bizarre experience that was. We all got accused we all had to go through review. Some people protested and walked out. I lost all my contacts blah blah blah. Welcome to the modern world or something.
What I wanna know is how many Reddit users are employed by a company that is tasked to do PR management a subreddit. For example, in r/thelastofus, you will get downvoted to the groundnif you say you didn’t like Part 2’s story
Twitter and their massive recent outages are a great example why you do not just push large amounts of code changes live. It leads to massive breaking of the platform.
Reddit deserved to get hacked though, so much moderators being hateful towards the artistés and art is being mocked by moderators. I would not expect nothing else than Reddit getting hacked because of it, lol.
The powermods should be banned. Actual Reddit mods have done nothing wrong, except for their political affiliations, political ideas, selective censorship, bullying, harassment... We need alien overlords
The cyber security guy at my college always emphasized to not shame anyone who clicked on a phishing link because then they will not come forward for help. He was always trying to encourage kids to be upfront so they could be safe
Yeah I work for a tech company. We have legit hired a third party to test us monthly and honestly I've fallen for one or two of their test ones because of timing with my boss. It makes me more aware of the new ways attacks happen. And our team is only like 6 people.
An example of one I fell for that was a test: a link to a "dropbox" or something similar account because my boss and I had been talking about new ways to manage our digital storage that week. And sometimes he DOES just send me random links. I AM chronically online. It does still happen to all of us. If this person was fired it would be like firing someone for dropping plates at a restaurant. Only reason to fire is if they lied which obviously they didn't.
Reddit collects a TREMENDOUS amount of data. I have ddg app tracking protection and Reddit managed a whopping TWENTY ONE THOUSAND tracking attempts. As a point of reference, your average "drum simulator 3D" app has about 200 tracking attempts
This is why the first thing you ever teach someone about using the internet is to never ever under any circumstances open links in emails, always go directly to the website
@[0:07]: I will say that there are many intellectual/civil areas of Reddit. That is thanks to sub-Reddits (a feature overlooked by anti-Redditors). Examples of interest sub-Reddits (copy-pasted): Academic Discussion r/AskAcademia r/AskPhysics r/biology r/chemistry r/compsci r/computerscience r/Economics r/highschool r/InformationTechnology r/languagelearning r/literature r/MachineLearning r/math r/Physics r/programming r/robotics Academic Help r/AskComputerScience r/AskHistorians r/askscience r/chemhelp r/explainlikeimfive r/GetStudying r/HomeworkHelp r/learnfrench r/learnmachinelearning r/learnmath r/learnprogramming r/learnspanish Hobbyist Subs *Subs named after specific video games. r/blacksmith r/crochet r/knitting r/woodworking Other Productive Subs *Software subs are decent. r/fixit r/homeautomation r/productivity r/TechSupport r/ZeroWaste
I'm a dev and my company has some heavy privacy/ compliance rules, and the IT team keeps us on our toes by sending us phishing emails. I know a few people who clicked the email and as a result they had to do a day-long in-person training session on data protection. A lot of people got caught when they sent a phishing email about the christmas party with a misspelled company email address
Check out the newest podcast episode: ruclips.net/video/NkO90iWavdw/видео.html
fake
balls
Hi
gay, like me
balls pt2
That employee who self-reported has some huge balls. I could never have the courage to admit that I fell for a phishing scam.
SUS AMONG US!!!!!!!!!!!!!!!!!!!!!!!!
@Logan floor ⸜⁄ not even close
These bots are fucking everywhere.
Tell that to his wife who's scolding him at home rn
@@thaddeusyoung6061 these Speed clones wilin 💀
If I was a boss and an employee realised they'd fallen for a phishing scam and self reported it, I probably wouldn't even discipline them much at all and would take note of who they were for future promotions into a position where accountability and transparency are critical. I'd rather an honest and accountable project lead with highly competent technical leads assisting than someone who was more competent but would likely bullshit me.
The closest thing to a punishment I'd give would be some extra training for spotting/detecting phishing attempts. It'd be paid as well, so they don't lose their wage for the day(s).
The forensic would lead to him even if he didn't report it. I agree. He did 'well'
Guarantee that person will double check for life. If you fire them there’s a high chance the next person to come in won’t have that experience and will break something similar. If it’s not gross incompetence, mistakes are often the best training an employee can receive.
Increase their security clearance so when they next fall for a phishing scam they have more access.
@@BonziBuddy. yeah mistakes happen tbh
Huge thumbs up for That employee who self-reported! Everyone can slip, but nit everyone can rise up.
Self report, you say? 📮
@@kx7500 Please get a new joke
@@fusionsub I can't, the more stale it gets the better it gets.
@@fusionsub no
The Reddit employee really did the right thing self reporting instead of lying or trying it deflect responsibility, major respect for that guy they did a lot more than a lot of people would do in a situation like this (not out of malice though most likely out of embarrassment and fear) it took a lot of guts on their part and I appreciate their honesty.
This...
The standards have been so low for so long. That doing the job ...is now worthy of major respect.
As no one seems to do the job.
It has a lot to do with how your company's management handles these situations. If their reaction is to immediately fire the employee who was phished, NO ONE will report anything.
To have such an honest employee it's not an L for reddit, it's a massive W.
Working for reddit in the first place is a massive L though.
It's a big W in general when a company can promote a culture that encourages self reporting of incidents. Assuring workers that they won't get in trouble for reporting accidents, near misses, and other mistakes can go a long way in improving working procedures to prevent stuff like that from happening.
As a tech worker i can say it's a common thing to just come out and say you did an oopsie because it's solved faster
It's not even in tech. If you mess up in any workplace and you don't know how to quickly and efficiently undo all the damage, get more experienced coworkers. The sooner you do, the sooner everything will be fixed, and more likely to avoid unnecessary problems.
I’ve seen a lot of people who mention their oopsies get fired on the spot. Granted I guess an investigation would probably lead to the same result.
@@TheGuyWhoIsSitting Depends on the oopsie lmao.
@@TheGuyWhoIsSitting The depends on how bad the thing was and also how toxic the company is.
I work for a company where if there's a bug, our clients can lose millions fairly quickly. Nobody gets blamed when there's a critical bug though, because our process is like this:
1. Product manager defines feature
2. Developers start writing code and automated tested
3. A different developer reviews the code
4. Tests run and have to pass
5. Manual testing by a tester
6. If all the above steps 'pass' then the code is merged and eventually a release is done.
If a bug happens who do you blame? Were the requirements badly defined? If so then why didn't the rest of the team raise this in planning? Was the code implemented incorrectly? If that's the case then why did the reviewing developer not flag it? Why didn't the automated tests catch it? Why didn't the manual tester think of this edge case?
So you see, it becomes very difficult to assign blame to a person. Instead we try to focus on how to avoid it happening in the future. It's a much nicer mentality than blaming people. We do something similar with security where people get training every year and where people have fucked up in the past, automated protections were placed in response to such an event to make it harder to fuck up in the future.
@@TheGuyWhoIsSitting that sounds like a good way to create a revolving door of inexperienced employees.
They're taking the people who've seen and now understand the repercussions of what not to do and removed it from production.
A common policy in company IT security is to let employees swap out a generic password with something personal like all the first letters of words in a line of piece of musik they like or something. You'd be shocked how effective this is, especially with longer passwords...for every character added the time it takes to crack it scales like exponentially
Entropy is king! A long enough password even a dictionary attack comes off the table, the key really is to force the hash cracker to brute force and well, unless, you have a couple of hundred years and access to a supercomputer, GG!
100% agree with you!
Or just use a password manager 😐
@@atpray or don't, most of the time Password Managers get hacked, when that happens, you're fucked.
@@KatexNebula decentralized password managers like KeePassXC and locking it with a yubikey
I usually make up a word and then use that
As someone who works in IT, having someone self-report is a best case scenario here. You save me and those like me many hours of trying to sift through bullshit. Yes - you messed up, but you dodge any and all ire from me because you're providing me the info I need to resolve the issue. IT is problem solving, and when the problem is up front and center, it makes solving the problem much, much faster.
I supervised a call center for a Fortune 500 bank, and we would tell people a phishing test email would come from HQ to see, even when explicitly told how many frontline agents would fall for it, and it would be way more than most people would think.
Ironically I found out that Reddit got hacked was through a oceania agricultural site
How did ur replies already get bots in em? 💀
Damn, fr?
Also fuck them bots bruh 💀
@Doggo The hedgehog 😈no
@@checkedchecked7771 wait yeah, 7 minute old comment with a 9 minute old reply lmao
@@TheVincenzoGaming The bots can now predict when you are gonna comment on something and summon a reply beforehand with their spacetime bending quantum computer.
I expected a common Reddit L and got a rare cyber security W. And it's from Reddit of all places!
You know it’s a banger when the video starts off with muta laughing.
This is his 3/4/5th video where he starts off laughing, it's becoming a commonality
@@scrittle rolling out the hits
True
more like when he starts the video by saying something in Hindi
@@aurelian3268 those are public service announcements/breaking news
Recently found out reddit currently has about 750 employees. Employee that reported the issue did a great job.
2FA saves lives. My old, abandoned discord account was recently accessed. My heart skipped a beat but thankfully Discord asks for verification before letting you in. So my old shit wasn't leaked, thank god.
I would’ve had my life flash before my eyes
@@TenthMarigold oh no pls no
nothing says "i was doing shady shit on discord" like that lmfao. haven't we all though
@@Drew.DrivesYT Honestly I can't remember what's in there. Just cringy shit in general, I wouldn't want that to be seen by anyone.
@@Drew.DrivesYT Regardless of whether you’re doing something shady or not, I’m sure you wouldn’t want your private messages leaked.
You know it was a good day when muta gives the 2 for 1
@Logan floor ⸜⁄ that's a really good joke you have there, no wonder you are laughing so hard
@@AverageSuperNova lol
@@seanrobison8558 I just had a stroke
Yes
It's like that age old saying "get 2 birds stoned at once" or something
The security team should give that employee a trophy. Imagine if they didn't snitch on themselves.
Yeah. Even if the employee made a stupid mistake, punishing them will just teach other employees to hide and downplay any hack.
@@codingfeature3684 Honesty is the greatest virtue for a reason. Literally EVERY time I try to sneak something by someone, it makes things worse eventually. Likewise, I ratted on myself for some dumb stunt in high school, and my principal literally told me "If we figured this out by checking cameras, you would be expelled." If I could have only one thing, it would be honesty.
*>NO SNITCHING*
*that's a 4chan rule. Plebbit is 4normies.
@@vallisdaemonumofficial bruh green text on youtube doesnt work weirdo
@@vallisdaemonumofficial and you're cringe af
issue with self reporting is that many companies have this very toxic idea that people cant learn from mistakes, so they'll just fire that person on the spot. idk if reddits like that, but if they are, i give a helluva lot more shit about starvation than some data.
"some data" that could include sensitive data if Reddit has bad password management, and people do use the same password in a lot of areas sometimes, including their bank account. So people could lose money because of that "some data".
@@nikkiofthevalley dude, i dont give a fuck. if a company is gonna fire me for owning up to my mistakes, i wont own up. dont get mad at me, get mad at whoever decided everyone who makes a mistake should be fired on the spot.
I'm sure Reddit has an HR, financial, etc department. Just because someone is working at Reddit doesn't mean they are in IT & aware of these scams. I work at a place where they started running drills & I accidentally fell for it when they first started doing it a couple years ago & I work in the IT department.
it's easy to fall for if you're swamped with things going on and aren't paying quite close enough attention to things.
@@TGPDrunknHick Yeah especially for those who haven't been on the internet since day 1
most roles dont need external email, internal is fine and just make exceptions for particular domains, people are too dumb. You have to just lock it down.
@@juz882010 pretty much man yeah
Damn they got dumb motherfers working in IT and then we wonder why we constantly get hacked smfh
My guy muta out here keeping us up to date with the wild events of the internet w video.
"Thanks for the code, kind stranger" - The guy who hacked Reddit
They need to get rid of the "trending now" page. I don't wanna see shit that goes on today/this week (especially when I've blocked half the shit that comes up). I wanna just view the reddits I wanna view.
@Logan floor ⸜⁄ *Does anyone care?* 😆
@Logan floor ⸜⁄ and?
same but I don’t think they should just get rid of it, I’m sure lots of people use it
@@EternalNico1 who asked
@@EternalNico1 mhm
Pray for the mods of certain subreddits in these troubling times
Thoughts and prayers
I pray they all suffer horribly
The best way to never get phished is to never click on an email link and enter your credentials. If I ever get an email from some company I always manually enter the URL and log into my account that way.
Don’t click any link unless you’re expecting it (e-mail verification, password reset etc.) realistically.
what a great example of employee responsibility and transparency. Kudos to that employee who self-reported their mistake and prevented a potentially disastrous outcome. It's not often you see such honesty and integrity in the workplace. Hats off to Reddit's quick response and great security team!
This feels like the Facebook event all over again, at least it doesn’t have a metaverse
@Dispirited Soul 😈 me looking far and wide to find the person who asked
@Dispirited Soul 😈 nobody asked, Fuuka better
Avoiding spear phishing is basically impossible... they're so well targeted.
You know it's gonna be a good video when everyone says you know it's gonna be a good video when muta's laughs 🙌
He didn't speak in Hindi though, so it wasn't that good.
Most Muta videos.
Props to that employee for taking accountability. We need more of that nowadays.
you can always count on a muta video to open with either a goofy laugh, a sentence in hindi, or the classic "hello guys and gals"
especially at night when i forgot to turn down my volume and i just have to listen to Muta's maniacally laughing while I frantically tried to turn down the volume.
Did he set up the camera, and then began laughing sinisterly? or did he just laugh the whole time? i never know, and im too scared to know.
Or "hello ladies and Gentlemen"
Great video man. I agree, other sites/companies should up their security to better protect users more effectively.
Muta has trained me. Whenever he says “ladies and gentlemen” I think the video is gonna end lol
I rarely use reddit but it has been handy for finding obscure information I can't find in a search engine. It's a pretty interesting repository of data.
I'm pleased with how the employee and reddit handled the situation. It's so rare to see someone take ownership for their own fuck up. It's refreshing. They're only human, mistakes happen, and they were solid enough to admit fault and take steps to fix the situation before it got out of hand. I could only imagine the chaos if they were dodgy and tried to cover it up.
Reddit is the lawless ghetto of the Internet. Don't bother chatting there, its nothing but reposts and dogpiling onto other more worthy websites. The Puff pieces and clickbots alone will make you want to vomit. Its Tor equivalent Dread is supposedly much better which accounts for the recent drop in quality.
Interest subs are great too.
Academic Discussion
r/AskAcademia
r/AskPhysics
r/biology
r/chemistry
r/compsci
r/computerscience
r/Economics
r/highschool
r/InformationTechnology
r/languagelearning
r/literature
r/MachineLearning
r/math
r/Physics
r/programming
r/robotics
Academic Help
r/AskComputerScience
r/AskHistorians
r/askscience
r/chemhelp
r/explainlikeimfive
r/GetStudying
r/HomeworkHelp
r/learnfrench
r/learnmachinelearning
r/learnmath
r/learnprogramming
r/learnspanish
Hobbyist Subs
*Subs named after specific video games.
r/blacksmith
r/crochet
r/knitting
r/woodworking
Other Productive Subs
*Software subs are decent.
r/fixit
r/homeautomation
r/productivity
r/TechSupport
r/ZeroWaste
i dunno if this already exists, i was wonder mr. muta, if u could make a simple personal security tutorial or series of videos for us plebs? i am reaching the point where i need to update my security cuz im growing having more accounts, more financial incentives to keep safe etc. and you mention so many good practices but i was wonddering if you could order then in like increasing difficulty or utility. for example, i feel like having a good password would be step one and like step 2 would be making good passwords and in those steps, using a password manager. then comes all the other stuff. i undo, just wanted to put my thoughts out there before i forget cuz i thought it would be a good idea. thanks for all the love muta. keep safe!
Waiting for a video where Muta says my bank account got hacked too.
Give it a week or two
I work for an oil and gas company, I love how sometimes they send out “congrats employees you won something something click link and enter employee # to claim it” and it you click it it won’t open and you instantly get a “how to see avoid scam/fishing class has been adding to your training, complete by this date and inform supervisor.” It hasn’t gotten me yet lol
OH NO! All my saved *_SAUCE_*
You know it’s gonna be good when the video starts with his iconic laugh.
You know you're an NPC when you've left this same comment for the trillionth time about something that's in every single video and you still use the term "based" unironically
that goofy forced laugh
Huge balls by the guy who self reported. Hope they weren't too harsh on him about it
The hacker known as 4chan strikes again
Google needs to learn from Reddit's example in this kind of a scenario
I work in IT and I couldn’t see any of our users ever self-reporting an issue. In fact, they would probably argue it if asked. Bravo to that Reddit employee!
The employee who self-reported probably recognized his or her mistake immediately. They also realized that their computer was the gateway, and that in any investigation, that fact would be found out anyway. Much respect to him or her anyway for stepping up and stopping a tsunami wave of hacking at Reddit. Good to see responsibility, somewhere on the internet.
What I find more impressive about this isn't just that the employee recognised their mistake and had the courage to come forward, but also that the company gave the employee the trust that they could come forward with something like this. In most companies a lot of employees wouldn't tell anyone about a mistake like that because if it was discovered that they made such mistake they would get fired immediately, so that means that Reditt actually does the good and humane thing that is to realise that humans make mistakes and don't punish their employees (at least not harshly) for fixable mistakes. This is what all companies should be like, but we all know that expecting that in today's world is a fantasy.
Note to self: put a drill through Muta's body to get access to his phone.
As a security engineer, honest employees like that are so vital
My medical insurance group sent me a letter saying that nearly the exact same thing happened to their systems, and that it occurred at around the same time.
I'm now suspicious that these events may be related.
Makes sense, alot of scammers and hackers opt for a "throw sh*t at the wall and some will stick" approach to getting what they want. Much like fishing, phishing isn't exclusively a single "hook" game. Sometimes, they cast a wide "net", by which I mean they have a large number of potential targets, and hit them all with the same strategy, usually at the same time.
When an attack on 1 company turns out successful, often enough you'll find that several have been targeted.
reddit has fallen off HARD💀
first the art stuff
the art stuff again
the art stuff for a third time
and now this! damn reddit.
This comment is golden
Reddit failed when they started to pandering to glowies.
Don’t forget hiring a pedophile as an administrator
@@CowLiver You either get shut down by the glowies, or you live long enough to pander to the glowies.
@@CowLiver the fuck are glowies?
I had to submit testing code to the production server because, for what ever reason, AWS SAM(running AWS Lambda locally) wouldn't take my updated code or just decided to error the fuck out. After hours of deleting cache files, configs, and reinstalling, with no results, I sent it to the production server, and it worked fine.
In my job as a tech... we used to call it "error behind keyboard" lol
Glad Reddit did an internal investigation and found out Reddit was perfectly fine lol
The employee saved the company by speaking out quickly. If he or she didn't report themselves, it might be disastrous
You know it’s a good video when Muta is laughing at the beginning
I saw the title and quickly went to Reddit as quickly as possible. You can imagine my disappointment when I found out the website was still running.
Whenever we have data loss of any kind at my employer, we also have to self-report to our data privacy team.
Something similar happened to the company I work for (international company). Some ransomware deployed, some data stolen, some other things. Employees went through phishing, spear-phishing, smishing and all other -ishing training. We now get periodic "tests" from the security team, and should you fail by clicking a link, you have years of re-training ahead of you.....
Why is everything being hacked nowadays
People were stuck inside for like 2 years. A lot of people spent that time learning shit.
@@Ehh..... That and in those 2 years many of these companies have given the general public good reason to have strong discourse in the way they conduct business or communicate with the masses... People have been lied too and stepped on hard. Now finally starting to figure out it's not that hard to fight back when it's not just one hopeless soul running in circles.
Because they want revenge
Yeah the IT team aint gonna be happy you fell for a phishing scam, but reporting that quickly is best case. Good for that employee hopefully they give him a golden doodle star for their efforts and then make them complete a security evolution/training so they don't fuck up again
I love that whenever a company has to put out a statement that says they were hacked they always claim it was a “very sophisticated attack”. 😂
I love that I have a reddit account without an email address, I get reminded to input it every time I visit xD
U can use an email forwarder like anonaddy or something.
Self reporting something like this is brave, and deserves respect!
"Any financial institution should support security keys"
My bank: The best we can do is send you an SMS code
I've been banned from reddit like 8 times.
Same. Fall in line or get off it I guess 😂
I'm never scared of getting phished because I don't even read my emails.
Imagine working at a tech company and not being tech savvy
Reddit? A tech company? It’s an aggregate site.
That one time in the early 2000s when I was put on a website and accidentally deleted Tyson Hesse's entire SONIC ARGH page, spending the entire night re-creating it from scratch hoping nobody would notice because every update I made was LIVE.
Self-reporting rarely happens. More often what happens is they cover it up, pretend it didn't happen, and make it worse.
I could feel mutahar's incoming laughter from that thumbnail.
Hopefully hackers can remove all the power trip mods that ruin the place ... and delete all the trash subbredits that have echochambers as well.
Give that self reporter a wholesome reddit seal 🦭 🤣🤣🤣
Reddit got hacked? 😥 Now where will daddy Mutahar see his gorey-bwoody cwontwent? 😖😖
*Comes off Reddit*
"Hey Muta uploaded!"
"Fuck."
A true Reddit moment
New drinking game. Take a shot everytime muta says "ladies and gentleman"
I was watching Furry fart feet videos when it got hacked. I was so terrified.
May God be with you for the furry fart feet video won't.
I love the bit about phone security: people thinking their phones are completely inaccessible because they can use some form of identifier that you don't input into a keypad.
I once had someone come to me with his new phone saying "this uses a VOICE password, you'll never get in" he then proceeded to say "password" into the mic to unlock it, locked it again and said "try it, you won't get in"
Unfortunately for him, i imitate voices for shits and giggles all the time, I said password in a voice vaguely like his just once and the phone opened.
Moral of the story: don't trust shoddy self-identifier security on phones, give it all the padlocks in the world.
Nice video as usual Mutahar!
The video came out five minutes ago, there’s no fucking way you watched it all the way through
I was just remembering the time a bunch of us at a certain electricians school all had our phones hacked broken just so someone could hack the office printer. What a bizarre experience that was. We all got accused we all had to go through review. Some people protested and walked out. I lost all my contacts blah blah blah. Welcome to the modern world or something.
What was stolen? The world supply of vitriol and copium?
What I wanna know is how many Reddit users are employed by a company that is tasked to do PR management a subreddit.
For example, in r/thelastofus, you will get downvoted to the groundnif you say you didn’t like Part 2’s story
kinda happy that this happened tbh, reddit is long long gone as of now.
has been long long gone for a long time rather*
@@LowEndPCGamer100 Ey, fellow Mentlegen!
Twitter and their massive recent outages are a great example why you do not just push large amounts of code changes live. It leads to massive breaking of the platform.
Reddit deserved to get hacked though, so much moderators being hateful towards the artistés and art is being mocked by moderators. I would not expect nothing else than Reddit getting hacked because of it, lol.
Only the scumbag spithead mods/subs deserve this there's still alot of good shit on reddit
Yes, I find the mods more toxic than the redditors and they are extremely ban-happy.
Reddit is hate. Wym? It's a psychological playground. Lol. Give lots of money and social reach to a bunch of closet based dweebs and you get Reddit.
The powermods should be banned. Actual Reddit mods have done nothing wrong, except for their political affiliations, political ideas, selective censorship, bullying, harassment...
We need alien overlords
The cyber security guy at my college always emphasized to not shame anyone who clicked on a phishing link because then they will not come forward for help. He was always trying to encourage kids to be upfront so they could be safe
Reddit a walking W ✊🏻
Yeah my employer does those phishing tests and I got the " you fell for it loser" redirect
Reddit got hacked!?
Aw, I was hoping for it to be gone completely...
4:20
Those employees deserve employee of the month for their honesty
To be fair, most of redditors are indeed hacks.
I mean, Reddit itself is pretty much a hack of a platform.
Underwhelming, in all aspects.
Say that again and i’ll downvote you to oblivion, kind stranger 😡
No reddit karma for you 😠
@@groundersteel3318 I only go there for porn and I find the comment section very chill.
@@socio4181
No they're all hacks.
Yeah I work for a tech company. We have legit hired a third party to test us monthly and honestly I've fallen for one or two of their test ones because of timing with my boss. It makes me more aware of the new ways attacks happen. And our team is only like 6 people.
An example of one I fell for that was a test: a link to a "dropbox" or something similar account because my boss and I had been talking about new ways to manage our digital storage that week. And sometimes he DOES just send me random links. I AM chronically online. It does still happen to all of us. If this person was fired it would be like firing someone for dropping plates at a restaurant. Only reason to fire is if they lied which obviously they didn't.
WE ARE! REDDIT NATION!
Intros always on point. Please for le love of x, set your camera to manual focus mode :-)....love.
I wonder why reddit would be hacked, totaly not because of the community
@Dispirited Soul 😈 no
Love how his thumbnail be looking like he was the mastermind behind it
😮 😂 😊 I laughed too the second I hear Reddit got hacked. I actually Chuckled with Glee.
Reddit collects a TREMENDOUS amount of data. I have ddg app tracking protection and Reddit managed a whopping TWENTY ONE THOUSAND tracking attempts. As a point of reference, your average "drum simulator 3D" app has about 200 tracking attempts
Good Reddit sucks and doesn’t let people voice their opinion
This is why the first thing you ever teach someone about using the internet is to never ever under any circumstances open links in emails, always go directly to the website
@[0:07]: I will say that there are many intellectual/civil areas of Reddit. That is thanks to sub-Reddits (a feature overlooked by anti-Redditors).
Examples of interest sub-Reddits (copy-pasted):
Academic Discussion
r/AskAcademia
r/AskPhysics
r/biology
r/chemistry
r/compsci
r/computerscience
r/Economics
r/highschool
r/InformationTechnology
r/languagelearning
r/literature
r/MachineLearning
r/math
r/Physics
r/programming
r/robotics
Academic Help
r/AskComputerScience
r/AskHistorians
r/askscience
r/chemhelp
r/explainlikeimfive
r/GetStudying
r/HomeworkHelp
r/learnfrench
r/learnmachinelearning
r/learnmath
r/learnprogramming
r/learnspanish
Hobbyist Subs
*Subs named after specific video games.
r/blacksmith
r/crochet
r/knitting
r/woodworking
Other Productive Subs
*Software subs are decent.
r/fixit
r/homeautomation
r/productivity
r/TechSupport
r/ZeroWaste
I'm a dev and my company has some heavy privacy/ compliance rules, and the IT team keeps us on our toes by sending us phishing emails. I know a few people who clicked the email and as a result they had to do a day-long in-person training session on data protection. A lot of people got caught when they sent a phishing email about the christmas party with a misspelled company email address