cross-posted from: https://lemmy.world/post/3291604
Thanks to Popcrave https://twitter.com/popcrave/status/1691852136236327316?s=46&t=lcH0dp9biwkMEBKsRQeVeQ
Who here is going to put their ID and photo on X/Twitter
Haha why the fuck would anyone do this for some social media? :)
I did this to buy weed one time
Yeah but that makes sense.
Weed is atleast tangible, internet points are not.
looks over to Facebook
The majority will always just do what the site says I guess.
Honestly it should be illegal for the site to ask for this
Oh definitely. No one cares unless it personally affects them
No one cares of it’s obvious how it immediately affects them. The problem with uploading sensitive data to the Internet is more subtle, because it usually doesn’t affect you right away. But once you’ve uploaded it, it will be there for many years waiting to be breached…
Climate change: hold my beer!
I smell a large GDPR fine on the horizon. Mmmmhhh!
“Mastodon is soooo difficult to sign up to!”
Meanwhile on the dead bird site, go find your government approved ID, make sure you’re camera’s on and then take and upload several photos.
didn’t Parler have something like this, then their entire DB got hacked handed over to the FBI just after jan 6th, complete with hundreds of videos of the traitors committing crimes that they upload themselves? since Parler didn’t strip any metadata from uploaded media, the feds were able to use it all as evidence and use everyone’s IDs to tie it all to them.
I bet they arrested hundreds of people this way and used tons more of it at the various trials
Hot fuck on a stick, no! I didn’t sign up for Spoutible because they wanted all that personal information! What are you, a bank? (Oh wait, he WANTS X to be a bank, doesn’t he.)
From the text on there, you can see it’s probably not that insecure. Au10tix is the company actually doing the identity verification and they’re an Israel-based company that seems to be pretty legit. I bet X only stores the data in-memory while they send it over to the appropriate APIs or something like that.
Not that I trust them anyway with who’s in charge over there.
deleted by creator
As a Cyber Security professional I am telling you now, it is not a matter of “if” Au10tix get hacked and leak data it is when.
Everyone should minimise the number of companies with important Personally Identifiable Information to prevent identity theft and other scams.
Companies are not trustworthy while they are motivated solely by profit.
I would hope that people who have embraced the Fediverse concept over corporate options would be more discerning with their personal information.
The text says that you give X permission to store the image of your id for 30 days. If you trust them to delete it after that, then I don’t know how to help you.
Even if they do delete them, there will be millions of id images stored at any time.
What’s the worst thing that could happen? I mean, we’re already spied on constantly anyways.
Would you mind proxying all your data through my server? I MITM all TLS traffic, but as you’re already being spied on constantly anyways, there’s really no harm in opening yet another possible hole, right?
Oh boy, that au10tix sales pitch:
Did we mention? We built the technology that provided identity intelligence for airports and border controls. Then we added new superpowers for digital enterprise with the help of machine learning and all that other clever stuff.
“Yes I would like a government that narrowly resisted a violent coup a couple years ago to be able to link me to every off the cuff remark I’ve ever crapped out.”
- nobody in the fucking world, hopefully
American indoctrination. Dont you see? You need to vide from corporation power, not government. Thats just biased on pur pose.
Impertinent to imply I trust corporations either. Who was it that fascism is the fusion of corporations and government?
Modern fascism i would say. As some europeans might remember different (but not substantially different) fascisms.
Its just the old gaming of the system, we replaced dukes and barons with corporations. And thats much worse.
I don’t know if calling them “corporations” is even accurate. That’s being too kind. Anonymizing the villains of this story.
It’s not the random Amazon delivery driver. It’s Jeff Bezos. He’s the baron here. Name and shame.
It’s not the random engineer cleaning up Elon’s latest temper tantrum at Twitter, it’s Elon musk.
At some point management beyond the owners are complicit and I’ve met plenty of scum in the C and exec levels of corporations.
Good management is like the one at my dad’s work, where they basically insisted on him staying home and relaxing after some health issues, because they know the company is a soulless machine and giving sick people paid leave isn’t even going to amount to a rounding error for the finances.
Sure. We all hate Elon, but he’s no Gille de Rais.
That we know of.
Who was it that fascism is the fusion of corporations and government?
Mussolini I believe… although not I look for it I find quotes from him, but not anything approaching that line so I’m probably wrong.
Glad to have helped here!
“I have nothing to hide, I don’t break the law”
I have an incredible amount to hide, because I am a living human. How’s my day going? What are you, a cop?
Doesn’t have to be illegal to ruin your career. Could just be a horny web search at 3 am.
If they make this mandatory in any way later you can probably expect half of Japan to stop using Twitter due to their privacy laws
I believe this is only for users that want the blue tick in which case it sort of makes sense that to be “verified” means they infact have verified that you are who you claim to be.
Requiring a picture of you ID seems very 2005 though
Steam does the exact same thing if you want to publish a game as a sole proprietor. Picture of both sides of ID then selfie with ID.
Though it’s a big difference to comply with business KYC requirements than to simply have a cool icon by your username.
Yeah huge difference. I’m not sharing my actual PII with a social media website, let alone a centralised one run by a fascist 🤢
Requiring a picture of you ID seems very 2005 though
What’s the more 2023/contemporary alternative for verification?
Fully sequenced genome with attached dickpick and certified bathwater sample?
EDIT: Here’s an explanation I saw earlier of how it’s done in Finland:
How we do it here in Finland is that there are digital identity providers which use bank/mobile carrier to identify you. They then use MFA when identifying you. Any service can use these services to do strong authentication for you. And they don’t cost anything for the customer, and is really cheap for the company who wants to identify you. It is also build into the law that you must identify people using these, to avoid identity theft.
We have the same in Norway.
I seem to recall some international payment options being able to utilize it.
Here in Germany I think our ID cards use NFC, I can identify for Government related stuff by pressing my ID card on my phone. Last time I did this for some free energy cost related money from the government due to the war.
Same with EU and UK cos GDPR.
Who here is going to put their ID and photo on X/Twitter
Maybe not so many of the lemmy users but I guess, most normies will probably just give twitter/x all it requests even ID and photo
Normies absolutely will and they will think you’re crazy for not wanting to.
Not so sure about that, I feel like average people are waking up to technological bullshit like this more and more every year. Yeah there’ll still be an overly high amount of idiots, but I’ve learned that even older people can change and question things like this.
You can only get so many “We’re giving you 2 free years of identity theft protection because we got hacked and your personal information got stolen.” from big companies like your cell phone company, credit check company, etc. before you’re like “Hey, anything I put online can get stolen by criminals…”
Even if you’re a tech-unsavvy type. At some point the light bulbs turns on and you put 2 and 2 together.
Some will say they care about it, but when threatened with having their social media taken away, they will cave and give the info. Others will say something like “I haven’t done anything wrong so I have nothing to hide”. They still use Chrome and Gmail. They don’t use an ad blocker. They still install apps that request every single permission on their phones. Protecting your privacy online is extremely difficult and most people aren’t willing to do it.
Normies can’t remember things unless they are constantly reminded of it. Most probably don’t even know when these companies get hacked unless it gets talked about on the news. They don’t see the warning emails because it gets lost with all of the spam they get because they use the same email address for everything, same password too so the email account just got hacked too.
Maybe I swallowed too many blackpills but I just don’t see any positive changes regarding this happening any time soon without some new laws being passed, which won’t happen because these companies own every government.
It’s crazy because when I was a child these same people always told me to never tell anyone online my real name, age, or location. Now they are scrolling through facebook all day and constantly telling me to make an account.
if anything i would doubt that most people can be bothered to fish up all this documentation and go through the rigamarole of submitting it, i certainly feel exhausted just thinking about it
Privacy? What’s that??
- people
“I haven’t done anything wrong so I have nothing to hide!”
Me too 🙂
I assume this is the solution for celebs, public figures to confirm who they are (If they pay for premium)
yikes
People eat Elon Musk’s garbage PR like it’s dinner.
Elon will say/do anything to stay in the 24 hour news cycle. Any publicity is good publicity in his eyes. Stop doing the billionaire’s work for him.
Sure, I’ll give my ID and personal details to Elon Musk. He seems like a perfectly rational adult. /s
This the same Elon who doxxed a guy who took a picture of him that one time?
Imagine you post something online he doesn’t like and he sends some goons over in a blacked out cyber truck
Giving your ID to a company majority owned by the Saudi government what could go wrong?
What? Twitter is majority owned by Musk, by a very very large margin. Not that giving your info to Musk is any better than giving it to the Saudi government.
Musk’s purchase of Twitter was secured with funding from a number of investors, including Larry Ellison, the co-founder of software company Oracle, and Qatar Holding, which is controlled by Qatar’s sovereign wealth fund.
But bin Talal is the largest investor in it - and pretty much since Elon is so in debt, pretty much he and the banks are in control.
Less than 2B of the 44B was from bin Talal… They are the second largest investor behind Musk but there is a ginormous gap between first and second.
Haha what? Are people actually going to do this?