azorius.net

Scam Numbers - Reddit's (and possibly the internet's) largest scam number depository, now on Lemmy! (lemmy.zip)
from DripGeronimo@lemmy.zip to newcommunities@lemmy.world on 21 Jan 2024 17:26
https://lemmy.zip/post/8745446

With almost 40k subscribers on Reddit, r/ScamNumbers is one of the most useful online databases for tracking down scam phone numbers. Some use the information for awareness, while others take advantage by prank calling scammers to waste their time.

Whatever the case may be, we have a zero-tolerance policy towards personal phone numbers. We have enforced this rule severely on Reddit and will do the same here.

We also have a Matrix space!

#newcommunities

threaded - newest

tkk13909@sopuli.xyz on 21 Jan 2024 18:23 next collapse

But why is it hosted on a .zip domain? Edit: for clarification, I don’t have anything against having different instances. I’m just wary of anything using the .zip tld.

DripGeronimo@lemmy.zip on 21 Jan 2024 18:25 next collapse

I’ve switched instances from lemmy.world to lemmy.zip as .world was very slow with updating their server

ZeroCool@slrpnk.net on 21 Jan 2024 18:42 next collapse

It’s for the best anyway. It’s better for the health of the fediverse when communities are spread out across a wide array of instances. The consolidation of communities on lemmy.world is not ideal. Good luck with the community!

Blaze@discuss.tchncs.de on 21 Jan 2024 19:46 collapse

Well done, good luck with your community!

Blaze@discuss.tchncs.de on 21 Jan 2024 19:47 next collapse

lemmy.zip is a tech oriented instance. They have !technology@lemmy.zip and !databreaches@lemmy.zip which are quite interesting

Levsgetso@lemmy.zip on 21 Jan 2024 20:09 collapse

Saw you recently created an account here. You truly are everywhere lol

Blaze@discuss.tchncs.de on 21 Jan 2024 20:20 collapse

Yes, I’m trying to promote that instance a bit, the admins put a lot of work into it

Levsgetso@lemmy.zip on 21 Jan 2024 21:30 collapse

They really are amazing. Glad to have you with us 😊

brbposting@sh.itjust.works on 21 Jan 2024 21:27 next collapse

Oh badd Google!

tkk13909@sopuli.xyz on 21 Jan 2024 21:32 next collapse

Exactly

potvanherb@lemmys.hivemind.at on 22 Jan 2024 05:43 collapse

Great writeup and easy to understand. What would be a solution to this problem?

418teapot@lemmy.world on 22 Jan 2024 06:19 collapse

I hate that Google is exerting even more control on the internet with their TLD, but I don’t really think this attack is made all that much worse with .zip TLD. I can already bury a .com in a long URL and end it in .zip just fine like so:

github.com∕foo∕bar∕baz@example.com/foo/…/baz.zip

Or even use a subdomain to remove the @:

github.com∕foo∕bar∕baz.example.com/foo/…/baz.zip

The truth is most people don’t look much at URLs outside of a domain to verify its authenticity, at which point the .zip TLD does not do much more harm than existing domains do.

For mitigation, Firefox already doesn’t display the username portion of the URL on hover of a link and URL-encodes it if copy-pasted into the url bar. It also displays the punycode representation when hovering or navigating to the second example.

Da_Boom@iusearchlinux.fyi on 22 Jan 2024 06:54 collapse

Another problem is if you’re trying to sub to a community on lemmy.zip, it can be impossible if the server hosting your instance has blocked all .zip domains through their hosts file or even their Lemmy instance. You would be able to see it, but your instance won’t.

People and admins not trusting that TLD can be just as detrimental to people interacting with legit sites on that TLD, as its potential for abuse is at making it untrustworthy to begin with

testeronious@lemmy.world on 21 Jan 2024 18:28 next collapse

cool, subscribed.

WanderingVentra@lemm.ee on 21 Jan 2024 18:34 next collapse

I didn’t know there was a subreddit for this. That’s cool. Definitely subscribing.

otter@lemmy.ca on 21 Jan 2024 18:45 next collapse

Welcome! Consider sharing on !communityPromo@lemmy.ca

Also these are a universal links and they makes it easier for people to subscribe from other instances

!scamnumbers@lemmy.zip (simplest, but some apps don’t support it)
link (more complicated and requires someone to be on Lemmy when viewing the link)

Otherwise people can use something like the instance assistant browser extension

RedditRefugee69@lemmy.world on 21 Jan 2024 20:02 next collapse

Can someone explain to me how to use this data to block calls?

nilloc@discuss.tchncs.de on 22 Jan 2024 14:22 collapse

I was under the impression that (at least in the US) scammers don’t reveal any real phone numbers with Caller-ID. That they just chose random numbers with your area code and similar exchange digits to try and convince you it’sa let local call (like you drs office or whatever you may be waiting on). Is that not true?

RedditRefugee69@lemmy.world on 22 Jan 2024 14:28 collapse

All my scam calls come from numbers in my area code or close by

Rocketpoweredgorilla@lemmy.ca on 22 Jan 2024 08:24 next collapse

Don’t a lot of scammers spoof their numbers?

Cqrd@lemmy.dbzer0.com on 22 Jan 2024 12:58 next collapse

Not the ones that want you to engage over a period of time. A lot of scams, especially for old people, involve long back and forth conversations over days. These are usually very profitable for the scammers, who sort of gain a passive income for doing nothing other than stealing from old people.

Rocketpoweredgorilla@lemmy.ca on 22 Jan 2024 13:55 collapse

Ah ok, that makes sense… trying to build up trust I suppose.

A_Very_Big_Fan@lemmy.world on 22 Jan 2024 19:40 collapse

One of the main goals of scam baiting is getting a number to call them back on. But yes

ademir@lemmy.eco.br on 22 Jan 2024 18:12 collapse

!scamnumbers@lemmy.zip