SoylentNews is people
SoylentNews
Far-Right Platform Gab Has Been Hacked:
Donald Trump and a slew of other far-right users in January, many of them became digital refugees, migrating to sites like Parler and Gab to find a home that wouldn't moderate their hate speech and disinformation. Days later, Parler was hacked, and then it was dropped by Amazon web hosting, knocking the site offline. Now Gab, which inherited some of Parler's displaced users, has been badly hacked too. An enormous trove of its contents has been stolen—including what appears to be passwords and private communications.
On Sunday night the WikiLeaks-style group Distributed Denial of Secrets is revealing what it calls GabLeaks, a collection of more than 70 gigabytes of Gab data representing more than 40 million posts. DDoSecrets says a hacktivist who self-identifies as "JaXpArO and My Little Anonymous Revival Project" siphoned that data out of Gab's backend databases in an effort to expose the platform's largely right-wing users.
[...] DDoSecrets cofounder Emma Best says that the hacked data includes not only all of Gab's public posts and profiles—with the exception of any photos or videos uploaded to the site—but also private group and private individual account posts and messages, as well as user passwords and group passwords. "It contains pretty much everything on Gab, including user data and private posts, everything someone needs to run a nearly complete analysis on Gab users and content," Best wrote in a text message interview with WIRED.
[...] DDoSecrets says it's not publicly releasing the data due to its sensitivity and the vast amounts of private information it contains. Instead the group says it will selectively share it with journalists, social scientists, and researchers. WIRED viewed a sample of the data, and it does appear to contain Gab users' individual and group profiles—their descriptions and privacy settings—public and private posts, and passwords.
[...] According to DDoSecrets' Best, the hacker says that they pulled out Gab's data via a SQL injection vulnerability in the site—a common web bug in which a text field on a site doesn't differentiate between a user's input and commands in the site's code, allowing a hacker to reach in and meddle with its backend SQL database.
WIRED reached out to Gab for comment Friday, offering to share what we'd learned about the nature of the site's data breach. The company's CEO, Andrew Torba, responded in a public statement on the company's blog that "reporters, who write for a publication that has written many hit pieces on Gab in the past, are in direct contact with the hacker and are essentially assisting the hacker in his efforts to smear our business and hurt you, our users." (WIRED has had no direct contact with the hackers, to our knowledge, only DDoSecrets.)
[Ed Note - A link to the Wired story was also submitted via IRC by c0lo]
(Score: 0) by Anonymous Coward on Wednesday March 03 2021, @01:02AM (1 child)
Ticking the “post anonymously “ checkbox just means your visible user name is replaced with Anonymous Coward. You have to actually log out completely Then log in using a different ip/VPN. And a different browser.
We know this from certain people abusing their access rights.
(Score: 0) by Anonymous Coward on Wednesday March 03 2021, @01:42AM
Certain people being Teh Minty Boozard who also encouraged Azuma to finish her editor training so she could see the privliged info as well, all in an attempt to pin a post on me. Funny that, previously he was the one that would point out how TOR connections can change in the middle of browsing and people can appear to come from the same subgroups. Perhaps SN should move into a decentralized system where authoritarians, despite their occasional good intentions, can not abuse people.