logoalt Hacker News

jagged-chiseltoday at 1:42 AM1 replyview on HN

> Plead read [this] carefully before working on a bounty.

[this] appears as a link to a .li address, and that goes bad places.

Should be https://annas-archive.gl/volunteering#bounties


Replies

NavneetKrtoday at 4:59 AM

I went to that link and almost ran a malicious script in my terminal for a supposed reCAPTCHA verification. Just before pressing enter, I verified it with gemini and it said it was a ClickFix script designed to steal passwords and other sensitive information. Because of all the weird things we have to do for CAPTCHA verification these days, I almost believed it was legitimate and went with the steps. It is really frightening.

show 1 reply