Just found out that #BeagleIM automatically fetches web links in messages and plays the page's video if there is one.
This is not acceptable behavior!!!
* It's annoying. There isn't any obvious way to stop the video.
* It's insecure. The linked page might attack vulnerabilities in Beagle's video player.
* It exposes the user's IP address to anyone who sends them a message, potentially physically endangering them.
Will uninstall and replace ASAP.
#XMPP #security #cybersecurity #infosec #UX
ARGVMI~1.PIF
npub1k6…mm3fx
2026-02-24 00:22:06 UTC
Author Public Key
npub1k6ykawdchynr4qhzka4wk3qpj09g0p2kgcprd4y20mgrnlxxmucq5mm3fxSeen on
wss://relay.momostr.pinkPublished at
2026-02-24 00:22:06 UTCEvent JSON
{
"id": "abd42c1b9d2cfd31fe168194058b10ab09e7db7cc023c7d6d2ad8392d996dbd7",
"pubkey": "b6896eb9b8b9263a82e2b76aeb440193ca878556460236d48a7ed039fcc6df30",
"created_at": 1771892526,
"kind": 1,
"tags": [
[
"t",
"beagleim"
],
[
"t",
"ux"
],
[
"t",
"cybersecurity"
],
[
"proxy",
"https://mastodon.sdf.org/@argv_minus_one/116122748607288667",
"web"
],
[
"t",
"xmpp"
],
[
"t",
"security"
],
[
"t",
"infosec"
],
[
"proxy",
"https://mastodon.sdf.org/users/argv_minus_one/statuses/116122748607288667",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mastodon.sdf.org/users/argv_minus_one/statuses/116122748607288667",
"pink.momostr"
],
[
"-"
]
],
"content": "Just found out that #BeagleIM automatically fetches web links in messages and plays the page's video if there is one.\n\nThis is not acceptable behavior!!!\n\n* It's annoying. There isn't any obvious way to stop the video.\n\n* It's insecure. The linked page might attack vulnerabilities in Beagle's video player.\n\n* It exposes the user's IP address to anyone who sends them a message, potentially physically endangering them.\n\nWill uninstall and replace ASAP.\n\n#XMPP #security #cybersecurity #infosec #UX",
"sig": "1672dd0c6723fcf61a12d90825556358a35f51abaed3e85c49487bf6d58f24017fb6098aa25557ba66175f397cb95a5e412d6ff81cfb1aec7fc03e74f1098410"
}