@ultramaddie / ultramaddie.tumblr.com
Show me how to lie, you’re getting better all the time And turning all against the one is an art that’s hard to teach Another clever word sets off an unsuspecting herd And as you step back into line, a mob jumps to their feet
original midi at https://freemidi.org/getter-26812
*coughing blood and covered in wounds, on one knee, gripping my sword planted on the ground… And yet, smiling* Heh… And yet, despite everything… *I start glowing with mysterious power* I stay silly!
[Image ID: a typography edit that reads "if you can't stand to see happy transsexuals, look the other way!" in all caps. to the left is a cluster of dandelions. the dandelions have a gradient overlay of green, yellow, and orange. the entire image is textured to look aged and photocopied. /End ID]
click for quality (instagram) (my shop)
i'm no medical expert but my one and only health tip i can offer with any confidence is to allow yourself to listen to bohemian rhapsody every once in a while in a setting where you can put your your whole entire life up to this moment into singing along with the part where freddie mercury says "i don't wanna die, but sometimes i wish i'd never been born at all" and feel a layer of dead scar tissue peel away from your existence before it can calcify
every girl wants to get in a vehicle and flip 3-6 switches overhead in the process of turning it on
When I’m going to get frozen waffles and ramen from Walgreens.
More things should be operated with big thumb switches and knobs and dials and shit.
forgot to post these here. tears of the kingdom+long term nuclear waste storage warnings
reblogging now that the game is real!
cant recommend this enough but if youre able you should go on walks every day. like fuck weather fuck circumstance uust go outside. got rained on today and it was blissful. even just sit outside get fucked up by crazy ass wind youll never forget how small you are and rememebr everything matters
Pumpkin patch
zero braincells in this video
On May 3rd, Google released 8 new top-level domains (TLDs) -- these are new values like .com, .org, .biz, domain names. These new TLDs were made available for public registration via any domain registrar on May 10th.
Usually, this should be a cool info, move on with your life and largely ignore it moment.
Except a couple of these new domain names are common file type extensions: ".zip" and ".mov".
This means typing out a file name could resolve into a link that takes you to one of these new URLs, whether it's in an email, on your tumblr blog post, a tweet, or in file explorer on your desktop.
What was previously plain text could now resolve as link and go to a malicious website where people are expecting to go to a file and therefore download malware without realizing it.
Folk monitoring these new domain registrations are already seeing some clearly malicious actors registering and setting this up. Some are squatting the domain names trying to point out what a bad idea this was. Some already trying to steal your login in credentials and personal info.
This is what we're seeing only 12 days into the domains being available. Only 5 days being publicly available.
What can you do? For now, be very careful where you type in .zip or .mov, watch what website URLs you're on, don't enable automatic downloads, be very careful when visiting any site on these new domains, and do not type in file names without spaces or other interrupters.
I'm seeing security officers for companies talking about wholesale blocking .zip and .mov domains from within the company's internet, and that's probably wise.
Be cautious out there.
A malicious actor sets up a page with an auto-downloader squatting on a domain name that matches a common zip file name like photos DOT zip. This website is set up to start an auto downloader upon being visited, downloading a zip file with the same name as the URL which contains malicious software (virus, worm, keylogger, etc).
Scenario.
Someone you know well sends you an email or text with promised photos attached. The email even reads something like this.
Because .zip is now a TLD, that plain text is automatically formatted into a link to malicious actor's website without them having to send you anything.
Folk with family with iPhones or iPads that are sent multiple photos in one go might be familiar with iCloud's tendency to automatically compile them into zip file for the sender and less savvy tech users have trouble NOT doing that.
These same less savvy users, or even just someone just not thinking in the moment, will click that .zip link, not realizing it isn't the the same as clicking on the promised attachment.
They download a file that matches the name they expected. They open it because they were expecting that file and it's from a trusted source. Except the file they downloaded isn't the one that was sent by their trusted source and now they have malware.
Another Scenario.
An IT person tries to send you an email with instructions on how to resolve a problem with a commonly used filename like install-repair DOT zip or to install new software like microsoft-office DOT zip.
The email may start with instructions of where to go get the legitimate file to do the install or repair, but now a line later in the instructions is also has a link to a .zip URL. A user, already frazzled by IT problems, may click it to ensure they have the right file. Again, they download malicious code from a squatting website or it prompts them with a fake login and now the squatting website has stolen their login credentials for a legitimate site. All due to an expected email from a trusted source.
Above you can see microsoft-office DOT zip is already out there with a fake Microsoft login screen waiting to steal your credentials.
These risks are already out there now because the TLD has been activated.
Plain text on old post are already being resolved into links to the new websites.
Here you can see a tweet from 2021, long before .zip was a domain name, now resolves that plan text into a clickable link. You'll start seeing this everywhere, and malicious actors do not have to lift a finger to send it to you.
Yes, a lot of users aren't going to click that, but a lot of folk will. Whomever is squatting on photos DOT zip domain name has made a one time payment to have access to anyone that ever sees that file name typed out.
In an example of an existing squatter site, clientdocs DOT zip is exactly one such pre-setup .zip domain name that initiates an automatic download. This one may be harmless, but the set ups are already out there and waiting to catch folk.
It's an unnecessary and risky can of worms that's been opened up.
Holy Unforced Errors, Batman.
Look. Look. I think the hardest thing about your twenties is the shift from getting shoved towards new frontiers of maturity by, like, puberty and education and the logistics of gaining independence, to you having to shove yourself. It’s a mental recalibration from “you grow up whether you like it or not” to “you can and should keep evolving, but now you have to choose it. And you have to choose it a half-dozen times a day in increasingly annoying ways. And this sucks but the reward is that you get to be a person in the world.”
Y’know what? Fuck you. *Plays an acoustic guitar version of your leitmotif to show you still have tenderness and care in your heart, and compassion for others*
yeah? well fuck YOU *plays a music box version of your leitmotif to show that this is your home and its comfortable and nostalgic here*
No, piss off! *plays your leitmotif with immense reverb and a toned-down synth sound to show that nostalgia can also be about loss of what never truly was, a reflection of a reflection and a false memory of a false memory*
ok, boomer. *plays your leitmotif using discordant synth bass to display your spiral into villainy after you discover that your memories were a fabricated illusion that were created just to keep you complacent, and how that information is destroying you*
How many times do I have to teach you this lesson, old man? *plays your leitmotif in harmony with my own, intensity of both changing as our climactic battle’s balance shifts back and forth, eventually leaving only one with long, low pauses to musically represent our mutual struggle to overtake the other, yet not being able to exist in full without them.*
oh, you’re going to regret that! *plays your leitmotif on piano in short, soft notes to show that you’re being worn down, and that your energy is at a low, but with a steadily rising bassline that foreshadows your upcoming second form*
