Viewing a single comment thread. View all comments

DarkNet-Magic t1_j8p6wm7 wrote

Clicking a link absolutely will jeopardize your password. Albeit many phishing links aren’t that complex or intricate, but they are more common than you think.

I do pen-testing in my free time on the side, you would be amazed how often I come across those types of links. Apple accounts are more difficult to bypass, sure, but encryption isn’t an automatic guarantee of security, it just requires a little more complexity in the scripting.

1

Standard-Plan1506 t1_j8p98k2 wrote

No it won’t, stop making up these stories. You won’t get logged in anywhere unless you specifically confirm it by providing your password.

1

DarkNet-Magic t1_j8padjz wrote

I am not making anything up? Why would I have a reason to lie to a stranger on Reddit. If you haven’t come across those types of phishing links, that’s good for you, but to blatantly deny they exist is pure ignorance.

1

Standard-Plan1506 t1_j8pb59u wrote

I don’t know you tell me darknet pentester security engineer. Try me with your script, tell me my password

1

DarkNet-Magic t1_j8pbzp2 wrote

I never said I was a “security engineer”. I said I work in Cyber Security, which Pen-Testing falls under.

Better yet, I’m not wasting nearly two hours creating a phishing script to prove a point. Again, a stranger on the Internet doesn’t mean anything to me.

With that being said, I conclude my conversation with you.

1

Standard-Plan1506 t1_j8r7aa2 wrote

You're talking about session hijacking, mate, you need an exploit to make it work. The idea that you can create a phishing script in 2 hours to steal data from ios is ridiculous. And it's not going to produce a txt with login and pass, that's complete bs. You're familiar with 2FA, right?

1