Hacker News: brandonwindsonhttps://news.ycombinator.com/user?id=brandonwindsonHacker News RSShttps://hnrss.org/hnrss v2.1.1Wed, 10 Jun 2026 08:40:52 +0000<![CDATA[New comment by brandonwindson in "Gmail thinks I'm stupid, so I left"]]>Fastmail also uses global blocklists and reputation scores that can override your training. Could also be the sending IP is shared with bulk senders.

Marking as "not spam" should help over time. If it does not, create a rule to always deliver from that domain. That is the only way to guarantee it never happens again.

]]>Wed, 03 Jun 2026 15:10:12 +0000https://news.ycombinator.com/item?id=48385168brandonwindsonhttps://news.ycombinator.com/item?id=48385168https://news.ycombinator.com/item?id=48385168<![CDATA[New comment by brandonwindson in "Cloudflare Turnstile requiring fingerprintable WebGL"]]>Visa, Mastercard, and PayPal stopped processing payments for adult sites that used deceptive marketing. Hosting providers terminated accounts that sent image-based spam because the legal risk was too high. The same approach would work for other spam types. Target the payment processors, the hosting providers and make spam financially unsustainable.

]]>Tue, 02 Jun 2026 06:27:44 +0000https://news.ycombinator.com/item?id=48366748brandonwindsonhttps://news.ycombinator.com/item?id=48366748https://news.ycombinator.com/item?id=48366748<![CDATA[New comment by brandonwindson in "Cloudflare Turnstile requiring fingerprintable WebGL"]]>Yea, honest admins block entire regions because spam and bot traffic make it impossible to stay open

]]>Mon, 01 Jun 2026 10:20:56 +0000https://news.ycombinator.com/item?id=48354880brandonwindsonhttps://news.ycombinator.com/item?id=48354880https://news.ycombinator.com/item?id=48354880<![CDATA[New comment by brandonwindson in "What Apple and Google are doing to push notifications"]]>Spammers ignore both opt-in and opt-out, they do not care about UK or US law. That is where hosting provider enforcement matters.

]]>Thu, 28 May 2026 07:06:14 +0000https://news.ycombinator.com/item?id=48305628brandonwindsonhttps://news.ycombinator.com/item?id=48305628https://news.ycombinator.com/item?id=48305628<![CDATA[New comment by brandonwindson in "Netherlands seizes 800 servers of hosting firm enabling cyberattacks"]]>NL has cheap hosting, strong privacy laws, and providers that are slow to respond to abuse reports. Perfect storm for spammers.

]]>Sat, 23 May 2026 10:21:20 +0000https://news.ycombinator.com/item?id=48246457brandonwindsonhttps://news.ycombinator.com/item?id=48246457https://news.ycombinator.com/item?id=48246457<![CDATA[New comment by brandonwindson in "Google's AI is being manipulated. The search giant is quietly fighting back"]]>Google stopped fighting spam when they realized paid ads made more money than organic relevance

]]>Wed, 20 May 2026 18:43:59 +0000https://news.ycombinator.com/item?id=48212175brandonwindsonhttps://news.ycombinator.com/item?id=48212175https://news.ycombinator.com/item?id=48212175<![CDATA[New comment by brandonwindson in "Frontier AI has broken the open CTF format"]]>Click rate is higher because AI removes the broken English and generic scams. But detection is not the only answer.

Most phishing comes from a small set of hosting providers that ignore reports. The real fix is making abuse reports actionable. Fix that, and you cripple the economics of phishing. AI detection is reactive; killing the source is proactive.

]]>Tue, 19 May 2026 11:08:36 +0000https://news.ycombinator.com/item?id=48191784brandonwindsonhttps://news.ycombinator.com/item?id=48191784https://news.ycombinator.com/item?id=48191784<![CDATA[New comment by brandonwindson in "A 0-click exploit chain for the Pixel 10"]]>Education helps, but it puts the burden on the user. The real fix is shutting down the phishing source, not just filtering the symptom.

]]>Sat, 16 May 2026 19:19:40 +0000https://news.ycombinator.com/item?id=48162956brandonwindsonhttps://news.ycombinator.com/item?id=48162956https://news.ycombinator.com/item?id=48162956