blog of a German Roman Catholic non-binary school girl gone wrong/born again pagan, queer witch, writer, heterosexual life partner/girlfriend,
ordained minister, hardcore crocheter, proud nerdgirl, sister-in-law, aunt, and professional tarot card reader.
Back in the day I worked at a certain very famous and very high caste art museum in the US as a junior curator. Part of my job was to catalog the objects in the museum database. This includes details like provenance, measurements, and a visual description of what the object looked like.
Like I said, the museum was a pretty snotty institution. It’s got a LOT of objects it’s way famous for possessing, but nobody knew about the absolutely massive collection of Moche erotic pottery it had because the curators were totally embarrassed by this stuff.
Some examples:
Pretty hot shit, right? They never, ever put any of this stuff on public view or published it in any catalogues but - we legit had like several hundred pieces of Moche ceramics in the “dirty pots” category. Anyway, I was left alone to just do my job with regard to the database for several years, ok? And I figured, well, these’re accessioned objects in the museum’s collection - better get down to bidness.
I catalogued every goddamn bestiality, necrophiliac, cocksucking, buttfucking, detached penis, and giant vulva drinking cup in that collection. I’d be like,
A drinking vessel in form of a standing man wearing a tunic and cap. He holds an oversized erection in his hands and stares into the distance (note I did not say “like he’s hella-constipated”). The vessel has a hole at both the tip of the penis as well as around the rim of the figure’s head, thus forcing the drinker to drink only from the penis or risk spilling wine all over themselves from the top of the vessel. Red and orange slip covers the surface of the piece.
Pretty straightforward, right? Apparently the deep seated fear of these objects that the curators exhibited was meant to spread to me as well, but - no one ever gave me that memo, because I guess Midwesterners reproduce asexually. When the curators understood that I had catalogued all of these objects in addition to the other, non-sexy pieces in the collection, they were apparently livid, but knew they had no legs to stand on in terms of getting pissed at me for it.
I visited the museum’s online public access database a few years back and - every single description I wrote of these pieces has been totally neutered to say something like Male figural vase.
Long story short? Just call a dildo a fucking dildo. It’s all gonna be ok, I swear.
Museums should have sections dedicated to artifacts like these with a warning that says “There’s a lot of private parts in here but we’re dedicated to displaying history so we won’t censor these. Enter at your own risk” or something. It’s prudish to deliberately hide history because of some ding dongs.
Sue Tilley was 35 years old and working in a London employment office when she disrobed and let British artist Lucian Freud paint her in the nude. On Wednesday, one of Freud’s four nude portraits of her sold at Sotheby’s London for $39 million, the third-highest auction price for the artist.
“Mona Lisa wasn’t alive when she became famous—but I am,” Tilley said of the interest in her 1995-96 portrait, “Sleeping by the Lion Carpet.”
(I don't have a subscription to WSJ but I'll link the whole article anyway.)
$50,000 immediately dropped into my bank account wouldn't improve EVERYTHING but boy it sure would be a grand, sexy little start to a good, happy life path, don't you think
ok but this unironically works. talk about how the working class is exploited and you can basically sell full-on marxism to your average republican if you do it right. all you have to do is avoid the words "Marx," "capitalism," "socialism," "communism," "means of production," etc - just use synonyms. say "big business" or "corporate shareholder interests" instead of "capitalists." say "a government that prioritizes the needs of the working people" instead of "socialism." it WORKS. I've DONE it. the hardest sell are usually things like social and racial equity, welfare, things like that, because people have been primed with the racist/classist idea that those things are somehow unfair - but you can get your foot in the door to getting them to buy into those too if you start with class issues. read up on your theory, make sure you REALLY understand your own ideology, because that will enable you to reword it and successfully sell it.
In my experience, you can often help sell 'welfare' stuff by appealing to self-interest with a touch of Aren't We Great.
Disability benefits: "I mean, sure, there are probably some sad sacks who are gaming the system, there always are, but hell, with the amount of taxes we pay, the government can afford a few freeloaders, right? I'd rather pay for a couple people who don't really need it than not have the system at all for if I need it, or my kids do, or whatever. I mean shit happens. What if some asshole drunk driver puts me in the hospital and it takes me a year to get back on my feet? Or Heaven forbid something permanent happens. I'll sure be glad that I can get disability then, won't I?"
UBI: "I dunno, the kind of guy who'll just sit on the couch playing Call of Duty all day if he doesn't have to work, I kinda don't want him on my job site anyway. That type is just taking up a place that you could fill with someone who'll actually get the job done, you know? You end up short-handed even though you technically have enough people because everyone else has to pick up his slack. And it'd mean that if your boss is a dick you can tell him to shove it and not worry your kids are gonna go hungry while you find a better place. We can sure as hell afford it."
Racial equity: "I've got a lot more in common with a Black guy who's just trying to get the job done than I do with some rich white asshole who thinks the sun shines out of his ass because of how much money mommy and daddy have."
You can do this with all kinds of things. I've gotten a bunch of old vets on board with getting rid of FLOCK cameras by saying "Isn't it dangerous for anyone to be able to track our troop movements with a simple hack? I bet Iran would love to know the base commanders home address so they could mail him a bomb."
Ko-Fi Phishing Scam - Warning, Details, & What to Do if You Clicked the Link
Date of posting: June 3, 2026.
Heads up to my fellow Ko-Fi users!! There's a known phishing scam going around. The scammers are sending messages via commission messages. They're claiming that the account has been suspended and won't be able to receive payments until information is verified. They then provide a link to follow to "fix" the issue.
Do not click that link!! It will steal your information and possibly your money. Block the sender and delete the message. If you're concerned that your account has actually been compromised because you clicked a link sent to you, send a ticket to the real Ko-Fi support team and change the passwords on Ko-Fi and all connected accounts.
(Also, it seems like Ko-Fi is getting a lot of traffic right now, probably because of this latest blast of phishing attempts. Stay calm. Your account is fine. Only send a ticket if you filled out a suspicious form; and if you did click or fill out something suspicious, make sure you change all of the passwords on your Ko-Fi and all attached accounts.)
Since I'm me, let's take a closer look at the message, how this phishing scam is meant to work, and how you can spot these yourself in the future:
The goal of a phishing scam is to convince you that something is wrong and needs your immediate attention. Scammers want you to click a link or call a phone number in order to further convince you to part with critical personal information, such as your banking details, account passwords, home address, and more. Sometimes, they'll even download malicious software onto your machine.
The thing about phishing scams is that they require you, the recipient, to take action in order to work. You've got to click that link or make that phone call for them to access your accounts. If you block, report, and delete their messages, they lose.
Most phishing scams consist of a few key elements:
An urgent, inflammatory first line or email title
An assertion of authority (support, staff, etc.)
A brief description of what allegedly needs fixing, usually having to do with account issues, payment processing, or similar
A reassurance that this can be fixed with simple steps
A link to follow or a phone number to call in order to fix the issue
A deadline
Here's a screenshot of the message I received this afternoon:
We're hitting most of the common traits of a phishing scam, minus the deadline declaration. Still, when I saw the email notification that I'd gotten this message, I felt a little panicked! I know enough about phishing scams to spot them, and I recognized this as bullshit pretty quick, but I still felt that initial jolt of fear. The scam hopes that I'll take action on that fear alone, because oh god that's my money. You know?
So, I took a breath. Told myself I'd done nothing wrong, and if it was real (which it certainly wasn't), then I could contact support and figure it out. I logged into my account to have a closer look, and... Nothing. Everything was fine. No suspension notice, no big red prompt. My payment methods are intact with no warnings attached.
Interesting, no? I took another, closer look at the message. I grabbed a screenshot of it to send to the support team since they're tracking the situation and to talk about it here.
This is a very clever phishing attempt. The message itself is well-crafted. It's a little awkward in places, but the grammar is good. My guess is it's an LLM at work, generating text to send out. The emojis are a deeply unprofessional touch that would absolutely never be included in a message about something as serious as a suspension notice. The intention is to lower your guard and make you feel as though the "support rep" messaging you is on your side. It's meant to instill trust and camaraderie.
The description of what's going on is short, sweet, and to the point. Note the urgent tone and lack of details about why this suspension has supposedly occurred. A real suspension message would typically require at least a brief explanation of the reason for suspension, often including citation of site policies or a mention of reports being filed against the account. Nothing like that here.
It goes on to threaten my money, stating that people can view my page but that any payments they make won't be processed. It raises more questions than it answers -- will people be able to make payments and their money will hang in limbo? Or will those payments not go through? Or will the site not even allow payments to be made? This is by design, meant to cause a further spiral of anxiety that will lead the recipient to following whatever instructions they've been given.
And, oh! How kind! The process to fix this is super short and easy, and they won't even need me to upload any documents. What an odd thing to say. I hadn't even considered that it would require uploading documents... such as ID, perhaps. If the process is simple and purportedly safe, there's no reason to not do it right now! This assurance is aimed to prevent the recipient from putting the task off for later. It's also meant to entice someone who's particularly panicked to not go looking for other information or solutions -- because the best one is right here, no documents upload necessary.
And finally, the link. Click here to fix everything right now, it says. But take a closer look at that link.
It starts with the "ko-fi" website name, apparently on a page called "edit profile"... at a .my address. And then, of course, a bunch of random letters. It's the .my address that should raise the biggest red flag here. Ko-Fi is a .com web address, and all of their associated pages are .com, too. While I haven't clicked this link (and will not be clicking it, thank you), it will certainly not be going to a reliable settings page.
Again, the goal of a phishing scam is to steal your information by convincing you to click suspicious links. This scam in particular seems intent on getting you to "update your information" -- that might include your banking information, PayPal login credentials, Ko-Fi account credentials, and more.
You should never have to leave the website in order to verify or update this information. This isn't just true for Ko-Fi; it's true for pretty much every single website out there.
The other big giveaway that this is a phishing scam is that message at the very bottom, stating that this DM was sent because I have commission messages turned on. Commission messages allow people to contact me by clicking a little message icon on my commission listings. This way, they can chat with me about my services before buying if they have questions or want to negotiate details.
Ko-Fi support would absolutely not need to use commission messages to reach me. Beyond that, clicking the "Support" name should take me to an account page -- but it doesn't. It redirects me to my settings page, which is what happens when someone without an account messages. The company Ko-Fi has an account.
Beyond that, Ko-Fi support operates via ZenDesk. They wouldn't send a direct message about anything, let alone a suspension notice. I would have received an email with official Ko-Fi branding.
Which... in a way, I did. When someone sends a message on Ko-Fi, it generates an email to let the account owner know they've got one waiting for response. That means that I received an email that looked like this:
By sending a direct message through the Ko-Fi system, this phishing scam was able to make it look like the message was official. This is the real reason this phishing scam is so clever. An appropriately frightened and unwary person would see this and maybe not even log into their Ko-Fi account. They might just click the link from the email and follow whatever instructions they're given.
Put all this together, and I knew with absolute certainty that this was a scam -- one that will absolutely fool a lot of people.
Steps You Can Take to be 100% Certain a Message is Phishing
Even with all this knowledge and reassurance, it can be hard to know for sure that a message is a phishing attempt. Because, like, what if? You know? What if it's actually real?
First: Take a breath. Anytime you receive a notice about any account of yours encountering issues, take a second to calm yourself. If it's real, you'll want to follow proper channels to fix it. If it's fake, you don't want to be so panicked that you fall for a scam. Either way, give yourself a moment to breathe and calm down.
Second: Check your account. Close the email or the message. Don't click any links provided. Go to the actual website or app. Log in to your account and check for any prompts, pop-ups, or warnings in your account settings. If you can't log in at all, contact the support team of the site using their preferred channel(s).
Third: Check your payment processor(s) and bank account. Make sure there aren't any prompts, pop-ups, or warnings there, too. Make sure you can still log in okay and that there aren't any suspicious transactions that have gone through or that are pending. If there are, contact support ASAP; they might be able to prevent or reverse the charge, and they might be able to block any more from that source.
Fourth: Do a quick search online. See if anyone else is already talking about it. I found several Reddit threads talking about this scam, and it seems like it's evolved slightly since it first started appearing months ago.
Fifth: Check the website's support/help resources. A lot of websites have FAQs and other resources to help users with issues they might encounter. When any scam becomes widespread, the platform will typically put out official messages talking about it. They might also have blog posts or articles dedicated to the situation. If a problem is active and ongoing, they might even put up an alert banner to both warn users who don't know about it and assure users who have gotten the message(s) to not worry. Here's the one that's splashed across the top of Ko-Fi's support page right now:
Sixth: Message support. If you can't find any information, or if you interacted with the scam and are worried about being compromised in some way, send a message to the website's support team. Use their official channels to submit a ticket, send an email, or chat with a rep. If you're pretty sure you've encountered a phishing scam and you can't find anything about it, include screenshots of the message(s) so that support can properly investigate.
Seventh: Take extra security measures. If you're still worried after all of these steps and especially if you clicked a suspicious link, change your passwords. It's important to do this for every account attached to the one that's been compromised. (In this case on Ko-Fi, if you didn't click the link from the scammer, you shouldn't need to update any passwords or anything else.)
all i want for 2026 is that gigantic rancid AI bubble to finally burst in such a catastrophic way that the consequences will be so good and i'll never have to see another AI generated image ever again