Hello nice people,
I’ve been using NiceHash app for some time 5-6 years ago. (It was a simple app for mining cryptocurrency and you get paid in bitcoin on their wallet, then you could transfer bitcoin to another wallet.) It was working fine until they got hacked (or fooled us) and lost all crypto. Luckily I didn’t loose much like some guys did. I decided not to use the service anymore and I’m still receiving stupid e-mail newsletters. I tried to unsubscribe and It asks me for login, I know password, but don’t have 2fa anymore. Also I don’t have backup 16 words.
Now support told me that this is the only way and I feel ridiculous about taking selfie just to unsubscribe. Am I protected against this somehow? I live in Europe and I think Nicehash is located in neighbourhood.
And of course I never wanted to subscribe…and I don’t think I ever verified account with a document.
What are my options other than just filtering that shitty domain as spam?
edit: typo
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
How exactly does that verify that you are the owner of the mentioned account nor verify legitimate interest in withdrawing consent from being included in their marketing campaigns!?
I felt bad for the person being manipulated like this but then I saw that this was a cryptomining service and I approve of this as a punishment
Hehe, I dont blame you for approving that as a punishment. I feel lucky for not losing more than 50-100$
If it’s just the newsletters that bug you then just use a filter that automatically deletes them.
I do this on my email account I use for websites I don’t trust too much and will probably sell the email address for advertising purposes. Sometimes they then subscribe me to their newsletter and the unsubscribe button in the newsletter is often fake. So I use filters that delete them immediately.
Thx, thats what will happen unless I unsubscribe somehow
If you really want to be keep using the service, get a non watermarked random guy’s pic (he must be holding something) from the internet, write what they want on a paper and edit the pic so that the guy is holding what you wrote. This might not work because of the personal ID requirement but trying it doesn’t hurt.
They usually have a face detection algorithm running along with ocr and rarely check if this is a stock photo. I need to use Instagram to be in the loop. They blocked my account for using Barinsta so I did this and they unblocked it.
Hehe this made me laugh. Thank you!
Your story is also about nicehash? I might do that if I manage to digure out that pic. I will try
No. I was banned from Instagram. Good luck! Hope it works for you :p
You should just block them. Otherwise try with ai generated images, i heard midjourney works really good. But if you wanna cause damage threat to sue them if they dont whant to unsubcribe. You can probably do it since you are on european union and they take this type of shit seriously afaik, probably could do something aboit the money you lost too if it turms out they where being fishy aboit it.
Thanks. Im not gonna sue them, but I might report that if I find the right address. Ill first wait for their response to my last email. Thx for input
Don’t send any data that you haven’t sent already! Just block 'em f out, feels so nice :D Or they’ll demand a nude selfie next time!
If I ever send picture it will be nude selfie for sure 😂
If its just to verify does that mean they already have the information on record, like their picture? If not whats stopping someone from using someone elses picture and photo editing in the requirements?
They dont have a picture, but they have some information, probably a minimum that was required to create account. I dont remember exactly, it was long time ago. Photo editing requires skill and time. Maybe I can ask AI 😂
A requirement beyond an email address to unsubscribe from an email newsletter is illegal in most western countries.
What’s wrong with filtering their domain?
ahh, the sponsor from LTT that mined your PC while at idle :)
I actually made enough each month to pay rent for almost 2 years during the Covid pandemic (subtracted the energy bill).
I made enough to pay for the 3080 I was mining on and heat my office in the winter at the same time.
Unsubscribing and disabling 2FA seem like two different things.
Nothing says decentralized currency like having a corporation that controls your assets 😋
Don’t point out how all their bullshit requires middlemen and accounts holding their currency to make it work. That makes it looks silly. Almost like it’s just more complicated harder to use money that people can more easily steal from you.
I love talking to tech recruiters… We are a defi startup revolutionizing the financial world… “Cool, so distributed smart contracts, zero knowledge open source swarms?”… no, we run a centralized website where people give us money and we do a thing for them…
Putting the central back in defi. It’s almost like their is willful ignorance in what their own words mean.
Using buzzwords to describe doing something people have been doing for decades or centuries is all the newer big tech companies seem to do. They’re just fancy new middlemen with a shiny interface for us to use.
There are some really cool decentralized concepts that would be fun to work on. But only a tiny handful of companies actually do, it’s usually a open source group doing it.
Makes me mad when I talk to the imposters
That looks like a proper request to disable 2FA. Their problem is requiring login to unsubscribe from newsletter emails, which is total BS.
If support won’t take your email out of their list, just block the address / domain and move on, I guess.
I wouldn’t give them any extra personal info after what happened.
It’s probably not for marketing emails. They probably require login to disable account alerts. Imagine a threat actor gets access to your account, turns off transaction alerts so you aren’t notified, then transfers out all your crypto.
I’m certain the marketing emails don’t require login to unsubscribe.
OP is receiving newsletters
Additionally use any report functionality at your disposal, which may cause some mail providers to block them or cause them to offer proper opt out in the future.
All marketing emails are supposed to have a simple opt out without needing anything other than your email address.
This is what I do when I can’t unsubscribe in a minute. No reason to waste time on this, it is a solved problem.
well at least they provide this as an option. usually if you lose your 2fa, hardware keys (such as android phones) AND recovery codes, your account is gone. period.
there’s literally no other way to confirm your identity without something like id or a credit card if your credentials are gone.
Email is a perfectly fine second factor for recovery, at least when it was unchanged for so many years
That is your opinion. Personally if I have a password + 2FA configured for an account I don’t want anyone without access to those two things getting in. Ideally this would be configurable per-account, this way people who are fine trusting their email can do that and those who aren’t can not allow that.
But it is a question of security versus access. Some people would rather lose access to an account than give someone else access.
If it’s just a newsletter I would set up a mailbox filter that just sends all of their mail to the trash. GMail makes this pretty easy (highlight a spam message, select “filter messages like these” from the top menu), but idk how to do it on other mail servers.
Are they considered a bank? Because a be’abnk had to verify your identity and for that they can use a copy of your id.