this post was submitted on 13 Jul 2026
863 points (98.8% liked)

Technology

86364 readers
3117 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots


founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] krisevol@lemmus.org 1 points 2 days ago (2 children)

His social was logged into with that identifier

[–] Windex007@lemmy.world 10 points 2 days ago (2 children)

From the article:

Microsoft’s records showed that at that exact same minute, a Windows device carrying GDID g:6755467234350028 had visited the ngrok signup page.

Why does Microsoft have a record that includes both the GDID and a web addresses? I am confused by this mechanism.

[–] krisevol@lemmus.org 7 points 2 days ago

Because everything you do is tracked

[–] The_Decryptor@aussie.zone 2 points 2 days ago (1 children)

Could be using Edge (Account syncing), or using Bing while signed in (Considering they were signing into private accounts while on the VPN, seems possible)

[–] Windex007@lemmy.world 2 points 2 days ago (2 children)

This seems the most likely... but still I want clarity on the mechanism. An identifying token defined in the registry is being sent over the wire. That mechanic is pretty substantial, and I'm surprised a bigger fuss hasn't been made about that. This is pretty far beyond conventional header fingerprinting.

[–] The_Decryptor@aussie.zone 2 points 2 days ago

From other articles I've seen (Here's an example) it was telemetry and cross referencing the IPs used.

VPNs might help hide from passive identification, but they don't help when you connect to the same service on your normal and private connections alternatively. The computer equivalent of using both your real name and an alias with the same person, they'll know who you are.

[–] rimu@piefed.social 1 points 2 days ago

Yep. Assume the worst, imo

[–] AppleMango@lemmy.world 1 points 2 days ago (1 children)

and how do you think the social account was linked with said identifier?

[–] krisevol@lemmus.org 1 points 2 days ago (1 children)

Because that identifier is logged by the website when he logged in.