Getting Nicole-ed feels way more awesome than how getting scammer spam usually feels.

MushuChupacabra@lemmy.world · 17 hours ago

Getting Nicole-ed feels way more awesome than how getting scammer spam usually feels.

ThrowawayPermanente@sh.itjust.works · 34 minutes ago

I got a real Nigerian scam letter once, by lettermail. I was so proud of it, I showed it to people.

null_dot@lemmy.dbzer0.com · 15 hours ago

There’s actually conjecture in the Nicole community that Nicole might actually be the victim of bullying or some creepy obsession on the part of the perp.

It’s not really awesome at all.

Shortstack@reddthat.com · 15 hours ago

There’s a Nicole community now?

null_dot@lemmy.dbzer0.com · 15 hours ago

yeah !nicole@feddit.org

Only a few posts.

floo@retrolemmy.com · 16 hours ago

Nice try, Nicole

NicoleFromToronto@lemmy.ca · 16 hours ago

deleted by creator

Dark Arc@social.packetloss.gg · 17 hours ago

Does it though…?

MushuChupacabra@lemmy.world · edit-2 17 hours ago

Personally, yes.

We’re getting married!

Dark Arc@social.packetloss.gg · edit-2 16 hours ago

Congratulations, but please don’t invite me to the wedding 🙂

Deebster@programming.dev · 16 hours ago

We’re all getting invited.

DrSleepless@lemmy.world · 15 hours ago

One of us! One of us!

PaulBunyan@lemm.ee · 16 hours ago

What does “Nicole-ed” mean? I’m curious if it matches the Nicole I know.

weremacaque@lemmy.world · edit-2 16 hours ago

She’s everyone’s proud Polish wife from Toronto.

Apparently there’s a vulnerability with sending messages with images in them and “she” might be logging people’s IP addresses through that. I’m under the impression that while the Nicole images are probably all pictures of the same girl, the scammer is not her.

hedgehog@ttrpg.network · 3 hours ago

Apparently there’s a vulnerability with sending messages with images in them and “she” might be logging people’s IP addresses through that.

If the images are hosted on your instance, this wouldn’t be relevant. If they’re links to an image hosted somewhere, this is possible, but there’d be a lot of noise and not much value. To link accounts to IPs the URLs would themselves need to be different

I checked the urls to the images in my PMs and they’re all hosted on Lemmy.

bamboo@lemmy.blahaj.zone · 15 hours ago

Every one of the posts today that I’ve received have the url https://lemmy.laitinlok.com/pictrs/image/e1be7d9e-9e3e-4ba9-9c08-1ff084b554e1.png. If everyone has the same links, then logging people’s IP would get you the same information as logging IPs from a public post in any popular community. I think that would only make sense if each user was receiving different URLs, for the attacker to log the requested resource and their reference of which user they sent that URL to. I can’t confirm this suspicion on my own, but if the URL I posted is the same one you got today, then I doubt there’s any attempt to match users to their IP addresses.

Rivalarrival@lemmy.today · edit-2 3 hours ago

The URL you posted is not what I received.

Some sort of deanonymizing and/or tracking is the only thing that makes sense here.

A VPN is called for any time we might receive a Nicole message, or any time we access a previously received message.

Which means any time we access Lemmy.