so instead of creating some kind of authorization system that would not require sending your private information to everyone the govt did nothing and instead put that responsibility on EVERY company. begs the question why rushing so much?
so instead of creating some kind of authorization system that would not require sending your private information to everyone the govt did nothing and instead put that responsibility on EVERY company. begs the question why rushing so much?
I would suppose that this is because there is not a single way valid for every govt. For example, in Italy we have SPID, which is different from what Germany, France and every EU state have.
If Discord wanted to use it, they had to implement a numbers of way to do it, which can be not that easy.The department of Social security could have created some sort of public/private key pair to very age and DOB. But that’s too much to ask for isn’t it?
Have you seen the USA? UK? Russia? China? I really don’t want the government making any system to tie internet to any identity. I really don’t want any government having any role in the internet.
Just roll all the class actions into a UBI fund for the people
congrats everyone on your two free months of credit monitoring
A certain subset of people: “B-but at least it stops kids seeing photos of dental decay!!!1111”
…what?
my friend who also lives in the uk was unable to view a Reddit post that had a picture of dental decay because it was marked as nsfw and Reddit requires you to verify age using ID/selfie to be in compliance with the uk’s Online Safety Act to see anything marked as nsfw.
my comment was a play on the people who think this is all worth it because it might prevent kids from seeing porn
More people got It then didn’t. I clearly didn’t.
Im sorry but I need a verb there.
First off to get “it” is the verb. Secondly you needed a noun. See herr lookhere your English is not as good as you think it is.
So they have 2 million ai generated or free stock photos of faces?
These were images of people’s ID’s, along with photos of their faces to check for a match, not stock photos or even just real selfies on their own.
Half of those are Norman Reedus in Death Stranding 2.
Nah, it gets tricked by the first game just as easily lol
Oh no it’s that thing everyone would say would happen!
Why shouldn’t I make the Torment Nexus!?
Hmm, I don’t recall ever doing age verification for Discord. Were older accounts grandfather’d in, or is it currently limited by region or something?
Any time your account gets locked for age reason it requires it. So if you have never had an age lock it’s unlikely you had to do it.
It’s as easy as someone reporting you for being underage with no proof or even just saying “I’m 14 and what is this” as a meme to get locked tho.
Hell the auto flag system can hit you if you just talk like a kid sometimes.
I think it’s a UK thing
They have been passing legislation to basically dox their citizens for them to gain access to the internet
Also currently being rolled out in Australia too 😔
The Russia thanks UK for this valuable information
Yeah it’s like the government want to get sued. They are better than the previous administration but that’s a pretty low bar
It was obvious things like this will happen, unlike banks and government sites social media sites don’t have strict cyber security requirements and they want these sites to have a government ID. It was a bad idea from the start.
You often get age verification if your account got blocked because someone reported you to be underage
I believe people from
EUUK and people who say they were under 13 and got reported. They needed to send in a pic of them holding their ID to get unbanned.edit: UK people not EU
as some pointed out, eu folks didnt have to verify anything. afaik, its the uk folks that are affected
From EU, got nothing
Well, did you get reported and did you ever say you were under 13?
I don’t know and I don’t remember. I was replying to the ‘people from the EU’ bit, as it does not seem correct to me.
damn. I’m a 2 month old infant. Will i need to send in my ID??
Foot print
You’re much too young for the Internet. Please submit your SSN and parents’ credit card information.
Am from EU. Two accounts, but no ID confirmation required for either.
Who exactly was required to submit age verification photos? Just US citizens?
Besides some countries, people that had their account flagged as possible underage also need to verify themselves.
I know a French guy that joked about being 12 in a chat, got reported by a troll that got his account locked, and had to send his ID to unlock it.
UK ones too.
Just the UK, as far as I’m able to find. Some US users have to verify by clicking the box, but I do not believe they’ve been en-masse required to upload ID or use the UK’s facial recognition nonsense.
From the discord age verification FAQ:
The age verification features described in this article are fully available only to users in the United Kingdom and apply to all new and existing UK accounts.
So I guess it was only UK ones. For some reason I thought they were asking pictures in the US too.
You might be confusing it with how several states have attempted to implement identity verification for access to porn sites (which has so far avoided a similar scandal to this one by virtue of rampant, contemptuous noncompliance on the part of the porn sites)
deleted by creator
Quelle surprise
The fact that these photos and PII (personally identifiable information) were not destroyed after the verification process was certified is absolutely atrocious OpSec. I don’t even care which of the two companies is ultimately responsible, because they are both responsible.
- Zendesk for their bad OpSec
- Discord for both outsourcing this AND not having contractual requirements to properly secure and destroy PII when it was no longer required.
I work in IT, and treat PII like it’s dangerously radioactive, because in the digital world, it really is.
I agree completely its moronic, but I do imagine the law requires it
Right. It blows me away the required training we have to do for physical files more secured than Fort Knox! Tech world? Eh just throw it in the recycle bin
That’s because you have ethics
“Apparently” only those who were challenging the verification results and uploaded awaiting reverification are affected.
Not that that isn’t bad enough
That’s even worse, in my eyes. Maybe not in scale, but when appeal process is more vulnerable, that seems very questionable.
Yea, pretty sure most of the evidence is no longer ther
Me when I get a request for PII pertaining to a suspected corruption case: Have one of our corporate lawyers give me a written and explicit statement of what data I’m supposed to send to whom or get bent. I’m not touching that with a ten foot pole and gloves unless I have a legally solid affirmation that what I’m doing won’t come back to bite me, and that our workers’ council knows about it and will back me up.
I’m reluctant to even confirm that I can get that information in the first place. I mean, I’m the one with full access to the audit tool, so I probably do, but I’d have to access that data in the first place to check. I don’t think that anyone would notice or care so long as I don’t share that information, but as you said: dangerously radioactive; don’t touch if I can help it.
Proofs the UK is a shithole as well funnily enough.
Nothing against the Brits but their government oh damn that’s bad.
The Labour under Starmer is closet Tory. I wish that the popular Manchester Labour mayor (whose name I forgot) takes his place as PM, which actual leftist politicians try to make him to be. Although this will be a Sysiphean task under the ruthless politicking in British politics and Labour Party’s own strict rule on who could become PM.
Andy Burnham!
Wait til you see the next one.
:(
Yep. This is just the first. As long as individuals submit to these ID verifications, services which provide them will be highly targeted. I find it ridiculous that 1.5 million people actually submitted their info to access discord instead of finding a workaround or alternative. I can only imagine how many are gullible enough to verify on porn sites.
Well before the UK online ID laws, I saw some memes about people getting asked for ID as proof of age for NSFW servers, just to send to server admins. I figured it was a ID fraud scheme of some sort, but now I’d chalk it up to manic “protect the children” believers.
We’ll be reminiscing about good old boring Starmer once Lord Gobshite inevitably gets voted in by a load of gammons
Politicians: That’s the point.
Joking aside, now that I think about it, what difference does does it make if companies are stealing infos and spying on you with government mandated age verification checks, and hackers stealing your government mandated age verification info? This just reinforces my view that governments (and companies) are nothing but glorified gangsters.
Option 3: companies that you pay to provide authentication service. Regulated so that they clearly tell you if they are subsidizing service outside of your payments.
We nearly already do this with certificate services and they would probably be in a good position to offer an id service.
Option 3: companies that you pay to provide authentication service. Regulated so that they clearly tell you if they are subsidizing service outside of your payments.
Then you just need to hack this company instead of Discord, you only change target.
A hacker stealing your id can do way more malicious stuff like more expertly crafted phishing and identity fraud just to name two.
No one involved in this from the government to the companies is innocent in this chain though in my opinion. A breach is always bound to happen.
To me giving a company or government permission to create the databases allowed for mass facial recognition is the same thing as giving the facial recognition data to criminals. It will be leaked/hacked/sold, etc. It is only a matter of time.
How many Social security numbers in the U.S. have been leaked/hacked/sold/illegally transferred? ~340 million.
Facial recognition will be a near useless tool for security in 10 years, and 100% for population monitoring at the rate we are going.
And this is why this provide xyz private information for verification bs should be illegal
And why any service asking it should be moved on from.
Pretty sure these people could have found a teamspeak, matrix, or mumble server without the requirement.
deleted by creator
What happened to “Don’t share your real identity online”? Oh… Social Media.
In this case, it’s the opposite for people in the UK. It’s illegal to not verify age.
That’s why I used a picture of my anus for my age verification photo. The wrinkles are what sold it, I think.
