hack13
commented
8 months ago Thank you, I did reach out to them previously about this directly. I guess they haven’t addressed it. From my research on this, it is just the public endpoint for iDrive e2 similar to saying someone is hosting malware on AWS S3…
I am considering writing in functionality to download the thumbnails locally and serve them from the site, it would even speed up the loading rather than fetching from all the different remotes. I will move this to bug, as this could be used to exploit users since we are not serving the content ourselves.
Avast reports
i4i2.c12.e2-1.devwhich hosts the thumbnail ofsqueak.socialas infected with malware.VirusTotal confirms that 4 vendors currently flag it as malware: https://www.virustotal.com/gui/url/8d8a18f150e6cf30cdc2294f2aad1cdb6cfaaebe1d2d36c36bdf68cec9e19f2d?nocache=1