this is the first original work I’ve made in decades 😭 it is from a little story of mine that I hope to draw more about in the future

A speedpaint video of this will be available at my Patreon on september 1st!

The original art was made by a queer person!!!

Oooo I wanted this on a hoodie and now I shall have this on a hoodie soon! Here's the link to the shop in the image above!

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

ᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷᘛ⁐̤ᕐᐷ

@apolleo

If I had a nickel for every webcomic I've read with a hot-nonbinary-ocean-satan villain, I'd have two nickels

Listen, there's no secret mankind won't one day know and perhaps regret knowing

secret third option

the sun eater

buy a print here ☀

Well, being wrongfully suspended on Twitter is one way to cross 1000 Tumblr followers 😰

Hi everyone. I’m Claire! And I’m sad! But I won’t always be.

I make a webcomic called Phantomarine - its first printed volume is crowdfunding on Kickstarter right now. Check it out if you’d like!

And please share it around if you can. I just lost my main social media presence and I don’t know if I’ll ever see it in one piece again 🙃

Go check out fellow comic artists awesome comic and Kickstarter! Get that comic!

BUY A COMIC

YOU SHOULD DEFINITELY CHECK THIS OUT!!!

Book Holster // Funky Camelot on Etsy

you know I keep that thang on me

No snare may hold me / Spring postcard 2023 Surviving so much abuse in my life, I relate to the unicorn tapestries through being a different beast held captive by unkind hands. My full beauty must be allowed to be open and wild, and no snare, fence, or rein may hold me for long. This design is available as a gold foil postcard with matching vinyl sticker for those who sign up for my mail tier during March 2023. PATREON

This week on MCYTBLR...

This is 90% a video covering the containment breach and 10% just things that made me laugh/my own personal highlights lol sorry if I left out something huge, the song is only like 2 minutes long adkjfha

Thank you @mcytblrsexymen for the funniest two weeks I've had in ages and for also having really organized tags because there was absolutely no way I would have done this without them

tags from @cephalopod-truther

#I feel like we should include the clip of Joe telling Cleo that whole thing was basically a way to get the IRS off his back about marketing

This was from his crafting stream with Cleo on the last day of the polls—unfortunately neither of them have saved that particular stream so i cant provide you the link (and all of this was like a month ago so take my recounting with a grain of salt) but the jist of it was Cleo had commented Joe was the only creator involved to actually spend money on the competition, to which Joe responded that he'd gotten contacted by the IRS bc he filed his taxes as a small business (I think) but apparently wasn't spending anything on advertisements which was suspicious so when the tumblr sexyman contest came up he was like hey! this is a form of advertising right? and went all in on it

So all of the money he spent on his bribes and checkmarks and blazed posts became a tax write off to appease the IRS and Joe hills became a tumblr sexyman for tax purposes

before: GOD DAMN MOTHERFUCK PIECE OF SHIT

after: hello mommy 🥺 could you pretty please help me with this 🥺 it’s me your baby boy

Integrating SFX into the artwork is 👌

And now with color!

OKAY SIT DOWN SHUT UP, WE’RE GONNA TALK COLORS

THIS IS SAPPHIRE

THIS IS TEAL

THIS IS PERIWINKLE

THIS IS AZURE

 AND THIS IS TURQUOISE

WONDER WHY THOSE ALL DON’T LOOK LIKE THE SAME COLOR? BECAUSE THEY ARE NOT 

OTHER THAN BEING PART OF THE SAME FAMILY OF BLUES, THEY ARE NOT ALL THE SAME FUCKING COLOR! WHY WOULD THEY ALL BE THE SAME FUCKING COLOR! DO YOU THINK WE JUST NAME NEW COLORS FOR KICKS!?!?!?

WHEN DESCRIBING A CHARACTER’S GOD FORSAKEN EYE COLOR, PICK ONE YA GODDAMN HIPPIE

As someone who is colourblind this post is fucking hilarious because they are in fact all the same fucking colour

things heating up in the fuckin uuhhhhhhhhh BLUE fandom 

So uh….. fun fact about turquoise

They come in varying degrees of blue and green.

THIS IS TUMBLR

Now this is color!

New Tumblr Color Theory

Trigun brainworms are setting in.

New Things to Beware on the Internet

On May 3rd, Google released 8 new top-level domains (TLDs) -- these are new values like .com, .org, .biz, domain names. These new TLDs were made available for public registration via any domain registrar on May 10th.

Usually, this should be a cool info, move on with your life and largely ignore it moment.

Except a couple of these new domain names are common file type extensions: ".zip" and ".mov".

This means typing out a file name could resolve into a link that takes you to one of these new URLs, whether it's in an email, on your tumblr blog post, a tweet, or in file explorer on your desktop.

What was previously plain text could now resolve as link and go to a malicious website where people are expecting to go to a file and therefore download malware without realizing it.

Folk monitoring these new domain registrations are already seeing some clearly malicious actors registering and setting this up. Some are squatting the domain names trying to point out what a bad idea this was. Some already trying to steal your login in credentials and personal info.

This is what we're seeing only 12 days into the domains being available. Only 5 days being publicly available.

What can you do? For now, be very careful where you type in .zip or .mov, watch what website URLs you're on, don't enable automatic downloads, be very careful when visiting any site on these new domains, and do not type in file names without spaces or other interrupters.

I'm seeing security officers for companies talking about wholesale blocking .zip and .mov domains from within the company's internet, and that's probably wise.

Be cautious out there.

I really want to reiterate how this can go wrong frequently and fast, folks.

A malicious actor sets up a page with an auto-downloader squatting on a domain name that matches a common zip file name like photos DOT zip. This website is set up to start an auto downloader upon being visited, downloading a zip file with the same name as the URL which contains malicious software (virus, worm, keylogger, etc).

Scenario.

Someone you know well sends you an email or text with promised photos attached. The email even reads something like this.

Because .zip is now a TLD, that plain text is automatically formatted into a link to malicious actor's website without them having to send you anything.

Folk with family with iPhones or iPads that are sent multiple photos in one go might be familiar with iCloud's tendency to automatically compile them into zip file for the sender and less savvy tech users have trouble NOT doing that.

These same less savvy users, or even just someone just not thinking in the moment, will click that .zip link, not realizing it isn't the the same as clicking on the promised attachment.

They download a file that matches the name they expected. They open it because they were expecting that file and it's from a trusted source. Except the file they downloaded isn't the one that was sent by their trusted source and now they have malware.

Another Scenario.

An IT person tries to send you an email with instructions on how to resolve a problem with a commonly used filename like install-repair DOT zip or to install new software like microsoft-office DOT zip.

The email may start with instructions of where to go get the legitimate file to do the install or repair, but now a line later in the instructions is also has a link to a .zip URL. A user, already frazzled by IT problems, may click it to ensure they have the right file. Again, they download malicious code from a squatting website or it prompts them with a fake login and now the squatting website has stolen their login credentials for a legitimate site. All due to an expected email from a trusted source.

Above you can see microsoft-office DOT zip is already out there with a fake Microsoft login screen waiting to steal your credentials.

These risks are already out there now because the TLD has been activated.

Plain text on old post are already being resolved into links to the new websites.

Here you can see a tweet from 2021, long before .zip was a domain name, now resolves that plan text into a clickable link. You'll start seeing this everywhere, and malicious actors do not have to lift a finger to send it to you.

Yes, a lot of users aren't going to click that, but a lot of folk will. Whomever is squatting on photos DOT zip domain name has made a one time payment to have access to anyone that ever sees that file name typed out.

In an example of an existing squatter site, clientdocs DOT zip is exactly one such pre-setup .zip domain name that initiates an automatic download. This one may be harmless, but the set ups are already out there and waiting to catch folk.

It's an unnecessary and risky can of worms that's been opened up.

Holy Unforced Errors, Batman.

homeward

good traits gone bad