[angry-sw-dev]

Having your life compromised is never comfortable, but it's never less comfortable then when you suddenly realize you're being watched and having your home "invaded" in a potentially very personal way.

So if I understand it, the scenario is the digital equivalent of someone who uses a single key to fit every lock in their lives -- front door, back door, car door, ignition, safe deposit box, etc...

The key is stolen, possibly through no specific fault of the owner, and the owner may not realize it has even happened...

...and then these discord shock jocks go off and brute force these compromised email/password combinations until they stumble upon a working pair and then the hapless victim is subjected to the electronic analog of them unlocking the front door of their home and bursting into the living room yelling "hahaha gotcha, kill yourself!"

...all in order to increase their views/ratings.

I think it's just a shitty thing to do, but even more so when it involves children, or people who have no control over the cameras (like animal shelter workers)... I suppose _maybe_ if they made an effort to alert the owner first, an email "hey we have your u/p, if you don't change it in 72 hours you're going to be on our show"...

I think the nulledcast crew ought to take a lesson from Jon Stewart: BE A FUCKING PERSON ... think about how shitty what you're doing is, and no, the fact that these people are saps with insecure logins does not mean they deserve this.

[grahamperich]

I'm trying to figure out exactly how these ring hacks are happening. My whole family and extended family is concerned about them. So just to be clear, there isn't a known vuln with Ring specifically, right? It's just that people's email/passwords are getting popped somewhere else on the internet, and then because of password reuse their Ring account is also compromised? Is that the gist of it?

[fenwick67]

Correct, there are no actual vulnerabilities in the hardware or whatever. It's that people are re-using passwords, getting phished etc.

But... based on the number of people I've seen had their Facebook account "hacked", there are going to be lots and lots of potential victims here. Enable 2fa, use a unique password for this account, and this will never happen to you.

[jmuguy]

Thats it. And as messed up as it is maybe people will finally wake up to using better passwords. I'm really tired of local news covering this stuff and barely mentioning or not mentioning at all how the "hackers" are getting into the accounts.

[baroffoos]

Like they woke up after the first decade of facebook "hacks". Or more likely they will continue on as normal until we stop using passwords as the only source of authentication.

[angry-sw-dev]

Something you know. Something you have.

The typical two factor is a password (know) and SMS to a cellphone or code to an email (have).

...though that creates a vulnerability when the cell number can be ported, or the same password is used to access email... better to use authenticator apps or a physical "key".