Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
mas.to / Profile picture
mas.to /
@kingslyj
Mar 21 5 tweets 3 min read
If you value your privacy stay away from this fascist billionaire's anti-people browser being bankrolled by Modi Sarkar. Vembu claims Ulaa is a "browser that respects your privacy, protects your personal data"

But it includes India CCA Root CA which all browsers and OSes blacklisted after Modi sarkar issued fake Google/Yahoo certs in 2014.

thehindubusinessline.com/info-tech/zoho…

x.com/kingslyj/statu… As per a statement by Zoho, Ulaa stands out for its security features, including CCA Root integration, digital signing, and machine learning-based phishing detection. “It also offers a strong ad-blocking system and customizable protection settings for a better online experience,” the company said. It also has a 24-hour security patch policy and multi-lingual support.
May 11, 2024 15 tweets 9 min read
What a joke!

All this big talk about moving away from @Microsoft @Azure within a week for this most bullshit-iest of reasons when Ola's workload is primarily on @awscloud .

This thread will show document all the critical resources of @Olacabs that are hosted with @awscloud...
⁃Since LinkedIn is owned by Microsoft and Ola is a big customer of Azure, we’ve decided to move our entire workload out of Azure to our own @Krutrim cloud within the next week. It is a challenge as all developers know, but my team is so charged up about doing this. @Microsoft @Azure @awscloud @Olacabs This is @Olacabs website www-dot-olacabs-dot-com

DNS with @awscloud Route 53.

CDN with @awscloud Cloudfront ;; QUESTION SECTION: ;www.olacabs.com. IN A ;; ANSWER SECTION: www.olacabs.com. 21 IN CNAME d2km9f2275q5od.cloudfront.net. d2km9f2275q5od.cloudfront.net. 20 IN A 18.155.49.85 d2km9f2275q5od.cloudfront.net. 20 IN A 18.155.49.12 d2km9f2275q5od.cloudfront.net. 20 IN A 18.155.49.50 d2km9f2275q5od.cloudfront.net. 20 IN A 18.155.49.80 ;; AUTHORITY SECTION: d2km9f2275q5od.cloudfront.net. 71273 IN NS ns-1519.awsdns-61.org. d2km9f2275q5od.cloudfront.net. 71273 IN NS ns-1719.awsdns-22.co.uk. d2km9f2275q5od.cloudfront.net. 71273 IN NS ns-325.awsdns-40.com. d2km9f2275q5od.cloudfront.net. 71273 IN NS...
Apr 12, 2024 4 tweets 1 min read
Ok people! Listen up!

It's been 10 days since I started screaming into the void here and no main stream media outlet has bothered to report anything except parroting @DigiYatraOffice PR talking points.

It's time to kick this whole effort up a notch.

The plan is to build a consumer education website.

A one stop shop for everything DigiYatra.

(Un)Covering all aspects from technical/legal/privacy/investors/contractors etc.

Every little bit of information that can be sourced will be consolidated in one central respository.
Apr 2, 2024 69 tweets 38 min read
Yet another #DigitalIndia #FAIL

The idiots at @DigiYatraOffice didn't realise their package name didn't match their org/domain.

in.dataevolve.digiyatra /


ie. "Official" DigiYatra app was no different from malicious apps pretending to be them. play.google.com/store/apps/det…

Image @DigiYatraOffice Google doesn't allow you to change your package name.

So they have no choice but to force everyone to install their "new" app to lend their app some semblance of credibility.

/

More like #WeFuckedUp

org.digiyatra.org
play.google.com/store/apps/det…

Image
Jan 17, 2024 5 tweets 2 min read
LATE BREAKING: @UIDAI Director (Authentication and Veririfcation Division) has written to various agencies last month(Dec '23) stating that Aadhaar is not valid proof for Date of Birth. Image @UIDAI Maharashtra govt dragged UIDAI to court because an accused in a murder case had 2 different Aadhaar cards and claimed to be a juvenile based on the date of birth in one of them.

And UIDAI suddenly gained enlightenment that their @13footwall secured database is "in toto" garbage. It is further stated that in toto the capturing of date of birth is entirely based on information submitted by the resident and hence, burden of proving the date of birth of any person lies with the concerned resident.
Sep 21, 2023 12 tweets 4 min read
Another #SwiggyScam 🧵

Recently noticed that all Swiggy txns were for whole figure amounts, while other card txns still had paisa amounts.

Dug a bit and discovered @Swiggy used charge the exact amount to the paisa once upon a time but have since started salami slicing. Image @Swiggy And it's not Swiggy just stealing a few extra paisa per order.

Eg.
626.57+35.24+2.00+28.00-52.99+33.09 = 671.91

Instead of adding 9 paisa to round up to the whole rupee, @Swiggy charges Rs.3.09 extra instead.

Absolutely no justification for this. Image
Feb 26, 2023 11 tweets 4 min read
So much WTF from this out of touch dinosaur in just one article...

financialexpress.com/industry/learn… "India needs culture of honesty, just like China" --NRN

In the coin flip test, the four least honest countries were China, Japan, South Korea and India.

scmp.com/lifestyle/arti…
Oct 11, 2022 16 tweets 12 min read
The best @Meta can claim 20 hours after a story broke is "documentation ***APPEARS*(* to be fabricated"?

The story has a full incident review report with a Case ID.

Publish the real report or full out claim fabrication without any weasel words @andymstone . Image @Meta @andymstone And here's proof that @andymstone's public claims were pure BS with weaselly "appears" for CYA purposes.

And @Meta has indeed provided special privileges to the BJP IT Cell.

Shame on you @andymstone and @finkd for enabling fascists!

Jun 25, 2022 17 tweets 8 min read
People highlight genuine issues and are met with silence or blanket denials.

Someone shares a stupid video that goes viral on social media and they respond with a whole page of counter bullshit. Hey @NPCI_NPCI if this is how your encryption/decryption system works, you are a bunch of incompetent morons.

Banks "lock" data with a "private" key and NPCI decrypts it with corresponding "public" key that only NPCI possesses! #DigitalIndia

WTF is "Hexadecimal Private Key"?
May 1, 2022 17 tweets 18 min read
3 of 60 days before the new @IndianCERT poiicy comes into effect.

And nobody seems to have tried to use these NTP servers that are supposed to provide reliable and secure time service to the whole country... @IndianCERT Not just the whole country, even MNCs with infra in other countries need to rely on these servers because...

"it is to be ensured that their time source shall not deviate from NPL and NIC"

From cert-in.org.in/PDF/CERT-In_Di… Image
Mar 18, 2022 14 tweets 11 min read
This is why @Zomato is forcing people to theit app.

Your personal data that they grab from your phone is far more valuable to them than the money they charge you(delivery fees/subscriptions) for using their services and the huge cut from the restaurants. #SurveillanceCapitalism @zomato The @zomato share price is down nearly 50% from their all time high and they need to increase their earnings to prevent it from going even lower and that's not going to happen from just selling food, so it's time to monetise their customers' personal data.
May 28, 2021 4 tweets 3 min read
Billionaire gatekeeping vaccines...

Translation: "You filthy plebs! Keep away from my ivory tower!" So @rssharma3 has enabled "secret" vaccination centres for billionaires and their corporations on CoWIN that will not show up on the portal and the idiots at @Bioconlimited missed the toggle and made it public?

Feb 9, 2021 13 tweets 3 min read
I was under the assumption that one of the few things govts were getting right was rooftop solar power and net metering.

Boy was I wrong. Parents want to install an AC for the summer and I suggested exploring rooftop solar to go with it so that they don't have to worry about electricity bills and the upfront expense will be recouped in electricity bill savings in a few years.
Feb 6, 2021 7 tweets 4 min read
What you see on the form is only one part of the story.

**ALL KYC data** provided to **ALL** banks in India including photographs an PoI/PoI ID copies/scans are being uploaded to a central server.

ckycindia.in/ckyc/

cc: @SatpathyLive
Nov 17, 2020 6 tweets 2 min read
When was the last time so many banks disappeared in 6 years?

en.wikipedia.org/wiki/Category:… 1st April 2017

State Bank of Bikaner and Jaipur, State Bank of Hyderabad, State Bank of Mysore, State Bank of Patiala, State Bank of Travancore and the Bharatiya Mahila Bank >> SBI.

1st April 2019

Dena Bank and Vijaya Bank >> Bank of Baroda.
Sep 3, 2020 13 tweets 4 min read
Time Capsule #PreDigitalIndia
Jun 23, 2020 19 tweets 11 min read
Can someone who has received an email from the govt recently confirm if they have upgraded their mail servers in the past 2 years?
Jun 1, 2020 21 tweets 12 min read
Massive data breach from @NPCI_BHIM app.

"The scale of the exposed data is extraordinary, affecting millions of people all over India and exposing them to potentially devastating fraud, theft, and attack from hackers and cybercriminals."

vpnmentor.com/blog/report-cs… Image This project was run by @CSCegov_ which comes under @OfficeOfRSP to promote private and foreign bank owned company @NPCI_NPCI's app.

cscbhim.in/static/fronten… Image
Mar 26, 2020 30 tweets 14 min read
Horrible idea.

The only historical data location data govt. can access is cell tower based triangulation.(Assuming operators have it.)

Accuracy of cell tower location is anywhere from a few hundred metres to a few kms.

Many many times the distance the virus can infect you. For real time tracking, the COVID-19 patients will need to be carrying their mobile phone with them at all times with a govt. spyware app installed on their phone.

Which is an even more horrible idea, because it's literally a beacon for rabid mobs to find you.
Mar 22, 2020 15 tweets 5 min read
Earlier today Health Minister was blaming anti-social elements planning to end the curfew and step out at 9PM. The real anti-social elements turned out to his own party supporters following the chowkidar's orders to clang empty vessels....

They broke the curfew 4 hours before it ends.

Feb 29, 2020 15 tweets 15 min read
So many apps think they get to dictate what their customers can and cannot do with phones their customers have purchased with their own money.

So many apps still complain about rooted phones.

How long before they flag their competitors' apps as threats? Since @Paytm is so concerned about apps that can "steal" their customers' "confidential data"

Let's take a look at what kind of "confidential data" the @Paytm app "steals" from their customers. Image