I can't even fathom how mods now handle all this. I was a mod for one of the top subreddits and it was hard back then, a few years before LLMs, and I only had to deal with URL submissions, not comments.
I also help moderate a forum and I noticed the spike in new user signups for spamming has sharply risen over the last two years or so. The majority are most likely using LLMs to automate this. So now we put new registered users into a shadow account where they can post and interact, but it's only visible to them and no one else on the forum for a probation period. It seems to work for now.
Requiring readers to log in to view content doesn't really work. Some will register so that they can use the account to crawl. Some won't even care if they are requesting hundreds of URLs a minute. Sure, that sets off alarms, but it's a game of whack-a-mole again.
Same here, I use it once every year or so. I get AI slop when I log in that is mostly like this blog post.
My wife, who uses it maybe once or twice a month, does not AI slop, she showed me her feed. Nor does my friend who uses it daily. It's definitely based on usage or lack of usage.
I have a similar username on a "social media" site as the founder's username. I would get hateful personal messages, requests for favors, begging for money, etc., constantly. At first I would respond to correct people, but after years and years I stopped. I just disable notifications for that site and never read my mailbox, personal messages, etc. This has been going on for about 19 years now.
> These tokens allowed full access to the Azure AD Graph API in any tenant. Requesting Actor tokens does not generate logs. Even if it did they would be generated in my tenant instead of in the victim tenant, which means there is no record of the existence of these tokens.
Wow! No logs.
I wonder how Microsoft would notify affected tenants.
I get legitimate calls from my health insurance company. When they call, they are not allowed to say the company they call from, it's a HIPAA thing. Once I say the name of the health insurance company, they will confirm it. It's weird, but it's the way it is now.
In my experience managing a number of IPv6-only sites for clients, they still get crawled and abused, and this goes back years. If anything, it has gotten worse now with all the LLM/AI nonsense.