Kbin Pornbot alert - looks like a number of bot accounts have taken up residence on kbin and are spamming /m/random with porn

Looks like we've had a wave of porn bots hit recently. Screenshot is a sampling of what's popping up on my threads feed when sorted by new.

A heads up to @ernest and to folks with magazines that might get hit by these guys. Looks like they're submitting from a couple of different domains, so it's difficult to block them from the user side, and some admin action might be necessary.

EDIT: ernest has removed the accounts and content, looks like all is well.

acastcandream,

PSA for Mac OS users: get little snitch mini. Best protection against harmful URL redirects and such, especially coupled with uBlock Origin.

DarkThoughts,

DON'T CLICK ON THEM! They use multiple redirects which potentially leads them to load websites in the background that could infect your system.

Arotrios,
Arotrios avatar

F for @DarkThoughts. We salute your sacrifice for the greater good. May your files be encrypted and your antivirus strong.

DarkThoughts,

Ublock already nuked the pop up, I had to use an online scanner to check what was even happening because it just closed the tab immediately. Also I'm on Linux, so I feel I am probably not the target audience.

Hyperreality,

If you're on linux, even the fake MILFs in your area aren't interested.

DarkThoughts,

Ublock also eats them before they can even feign interest.

Hyperreality,

Hot MILFs in your area are now all dating Ublock.

DarkThoughts,

I got cUckblocked. :(

SpikesOtherDog,

Some women appreciate a good bit of fiddling around before you really get down to business.

Jaysyn,
Jaysyn avatar

Click on the server name & block it for all time.

Arotrios,
Arotrios avatar

I would, but it's not just one server they're submitting - they're pushing multiple domains.

That being said, I think I've reported and blocked all of them, and my feed is clear now - there were about 20 - 30 accounts in total. This indicates that someone manually set them up by going through Kbin's login process - if they had built a bot that could hack the login, we'd probably see numbers in the hundreds.

fisco,
@fisco@lemmy.ml avatar

Block the each user, there’s about 6 or 7, all on kbin.social, job done…

Arotrios,
Arotrios avatar

I found a bit more than that, but yeah, it was a manageable number on my end to clean the feed.

Brkdncr,

Might need to throttle posts from anyone to a single domain that isn’t already allow listed.

GeekFTW,
GeekFTW avatar

Yeah just unsubbed from /m/random a few moments ago, fuckin' unreal lol.

CIAtrackingaccount,

Where can I find this porn, so I can totally block and ignore it and not at all fap

Arotrios,
Arotrios avatar

@ernest nixed them already. Note that according to reports, the porn wasn't good and the sites full of malware and redirects.

ernest,
ernest avatar

@Arotrios The magazines have been cleaned up and I've deleted the associated accounts. If this happens again, I'll apply a temporary fix. And if the campaigns cease, I'll work on a more comprehensive solution. Thanks for reaching out.

Arotrios,
Arotrios avatar

@ernest - thanks! Glad I could help - you've built a great space here, and I know what a pain it is to deal with spambots.

Arotrios,
Arotrios avatar

And still coming in at a rate of about 10 every two hours... 6:30am PST, 17 hours from original post

Arotrios,
Arotrios avatar

Update 11 hours from original post - 12:45am PST - still catching them. Got another 10. It looks like they're firing off roughly every three hours.

Arotrios,
Arotrios avatar

Update 3:39 PST - another wave of 10 or so just came in - reported and blocked.

hariette,

Ended up having to ban a bunch of accounts from my instance. They just kept coming for a bit.

doppelgangmember,

Can we defederate from kbin now?

GrossGhost,
GrossGhost avatar

Why?

EnglishMobster,
EnglishMobster avatar

You realize you are posting this to the KbinMeta magazine hosted on the main Kbin instance, right?

roguetrick,

Asking to defend from us in a kbin thread is likely futile, I gotta say.

Arotrios,
Arotrios avatar

Yeah - I was laughing about that too. Guess the guy likes downvote farming.

Arotrios,
Arotrios avatar

You could, but then all you'd be left with is lemmings and mastodon toot.

AnonymousLlama,
AnonymousLlama avatar

Not even good porn. Booo

Carnelian,

Absolutely trashing c/all on lemmy as well

spacedancer,

Yep, it’s all over All even when sorting by Top or Hot.

Arotrios,
Arotrios avatar

You guys over at lemmy might be able to clear your feeds over there by unsubbing to or blocking kbin.social/m/random until the accounts get cleared out. It looks like that's the only community they're posting to here thus far.

Carnelian,

I’ve blocked it for the time being, will keep an ear out for when the issue is resolved.

I’m not quite sure what the purpose of m/random actually is under normal circumstances, though?

Arotrios,
Arotrios avatar

It's basically kbin.social's /r/all

Teppic,
Teppic avatar

It is more like r/EverythingElse
It 'only' catches posts which didn't go to a magazine, it doesn't aggregate the ones which did.

cacheson,
cacheson avatar

I think it's mainly to facilitate the microblogging side of kbin. Microblog posts normally get sorted into magazines according to their hashtags. Any post that doesn't have at least one matching magazine ends up in /m/random.

Carnelian,

Oh interesting, is there somewhere I can read about how that works? I’m not sure how the hashtags would translate into getting sent to different magazines, but it sounds cool

LollerCorleone,
LollerCorleone avatar

You can set the tags that correspond to a magazine from its settings panel if you are an owner or mod. So posts with those tag will start showing up in the microblog section of the magazine.

Carnelian,

Oh, word that makes sense, ty

Teppic,
Teppic avatar

My post on Microblogs from three days ago touches on this:
https://kbin.social/m/fediverse/t/275724/Browsing-the-wider-fediverse-from-kbin

DeusHircus,

My feed just got completely flooded by them, all from random. All of them have a very sketchy looking URL, might not even be porn but porn-bait with something more malicious on the other end

Arotrios,
Arotrios avatar

Yep - 100% a bot phishing attack - seen it a bunch on other sites I've run in the past. Probably goes without saying, but don't click the links. I've been reporting them as I block so the admins have a paper trail for when they're ready to purge the accounts.

SaintWacko,

Yeah, I just blocked random

  • All
  • Subscribed
  • Moderated
  • Favorites
  • kbinMeta
  • DreamBathrooms
  • magazineikmin
  • thenastyranch
  • ngwrru68w68
  • khanakhh
  • rosin
  • Youngstown
  • slotface
  • cisconetworking
  • modclub
  • kavyap
  • Leos
  • mdbf
  • Durango
  • JUstTest
  • InstantRegret
  • osvaldo12
  • tacticalgear
  • everett
  • normalnudes
  • provamag3
  • ethstaker
  • cubers
  • GTA5RPClips
  • anitta
  • megavids
  • tester
  • lostlight
  • All magazines
    •