When people are stupid enough…
Today the folks over at Namecheap announced a new .com domain giveaway on Facebook. The requirements were to like their post, comment with your username (!? yes, your username, public) and then share the post.
When I first read their requirements I was like “wtf? are they really that retarded?” and apparently they are:
Those of you not being too well versed with online security may say there’s nothing wrong with the procedure, but it’s not quite like that, because your Namecheap username should be private not public. Anyone that knows you personally (and a lot of your Facebook friends surely do) can easily use the Namecheap username if you make it public as per their requirements and obtain access to your account. Someone that’s stupid enough to ask you to make your username public is surely stupid enough to give away access to your account with a little social engineering.
After all how hard can it be to obtain access to one’s account if you know their email, address, DOB and possibly the right answer to the security questions? Right!
I saved the screenshot to write an article about this, and apparently, while I was asleep someone drew their attention about this stupidity and they reposted asking people just to say “Hi”: