Conversation

Notices

1. Embed this notice
   dilbert 1 (sun@shitposter.world)'s status on Wednesday, 16-Apr-2025 06:43:10 JST dilbert 1
   I like this new trend of infosec people just posting the leaked data instead of obscuring the source
   • ✙ dcc :pedomustdie: :phear_slackware: likes this.
   • Embed this notice
     dilbert 1 (sun@shitposter.world)'s status on Wednesday, 16-Apr-2025 06:47:34 JST dilbert 1

     in reply to
     “lol here’s 4chans emails” there’s probably some ethical violation with that but who cares
     Phantasm likes this.
   • Embed this notice
     dilbert 1 (sun@shitposter.world)'s status on Wednesday, 16-Apr-2025 06:49:34 JST dilbert 1

     in reply to

     • þernia
     @pernia hacked
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Wednesday, 16-Apr-2025 06:49:36 JST þernia

     in reply to
     @sun did 4chan go kaboom or what?
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Wednesday, 16-Apr-2025 06:55:14 JST Phantasm

     in reply to

     • þernia
     @pernia @sun
     janny board leaked
     janny emails leaked
     allegedly full yotsuba source leaked
     couple boards defaced
     
     The reason? A FreeBSD box that hosted the backend wasn't fully updated in almost a decade and improper file type checking on upload.
     ✙ dcc :pedomustdie: :phear_slackware: likes this.
   • Embed this notice
     H. Faust (hfaust@shitposter.world)'s status on Wednesday, 16-Apr-2025 06:55:23 JST H. Faust

     in reply to
     @sun The horseshoe theory of kiwi farm users and infosec people.
     dilbert 1 likes this.
   • Embed this notice
     dilbert 1 (sun@shitposter.world)'s status on Wednesday, 16-Apr-2025 06:55:52 JST dilbert 1

     in reply to

     • þernia
     • Phantasm
     @phnt @pernia did someone update a php file lol
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Wednesday, 16-Apr-2025 06:57:58 JST Phantasm

     in reply to

     • þernia
     @sun @pernia Some boards allowed posting PDFs, but the backend didn't check, if the file was actually a PDF, so the hacker in their own words uploaded a Postscript file that exploited the ghostscript version from 2012 and that was their entry. Then they misused an suid binary that shouldn't have been an suid binary.
     dilbert 1 likes this.
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Wednesday, 16-Apr-2025 06:59:17 JST Phantasm

     in reply to

     • þernia
     • Kucing Goreng
     @stelo @pernia @sun I say allegedly, because I didn't try to run the full source and nobody to my knowledge tried to. The .git folder is missing from the archive even though the hacker specifically mentioned it being a Git repo.
   • Embed this notice
     Kucing Goreng (stelo@fsebugoutzone.org)'s status on Wednesday, 16-Apr-2025 06:59:18 JST Kucing Goreng

     in reply to

     • þernia
     • Phantasm
     @phnt @pernia @sun don't say allegedly, it definitely leaked fully. i would upload the archive here but im not sure if that's permitted. either way wait a few days and you'll definitely see the shit PHP code and learn the wordfilters.
   • Embed this notice
     ins0mniak (ins0mniak@mikoshidata.cloud)'s status on Wednesday, 16-Apr-2025 06:59:33 JST ins0mniak

     in reply to

     • þernia
     • Phantasm
     @phnt @pernia @sun Many such cases!
     Phantasm likes this.
   • Embed this notice
     Dad (noyoushutthefuckupdad@shitposter.world)'s status on Wednesday, 16-Apr-2025 07:11:57 JST Dad

     in reply to

     • þernia
     • Phantasm
     @phnt @pernia @sun a leet haxxor breaking into a system that hasn't been updated in a decade is kind of like a grown man beating up a sick baby
     Phantasm and dilbert 1 like this.
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Wednesday, 16-Apr-2025 07:33:26 JST Phantasm

     in reply to

     • þernia
     • Dad
     @noyoushutthefuckupdad @pernia @sun At least they went through the process of actually exploiting the system like you would normally do, instead of getting shell access with the Postscript file, ping a host you own to figure out the origin IP and then throw metasploit at it. The Touhou "mark of exploitation" also doesn't realy add up with the userbase soyjak party has (zoomers).
   • Embed this notice
     Dad (noyoushutthefuckupdad@shitposter.world)'s status on Wednesday, 16-Apr-2025 07:37:56 JST Dad

     in reply to

     • þernia
     • Phantasm
     @phnt @pernia @sun what are these words you speak? sorcery. :DUMBcat:
     Phantasm likes this.
   • Embed this notice
     Phantasm (phnt@fluffytail.org)'s status on Wednesday, 16-Apr-2025 07:47:08 JST Phantasm

     in reply to

     • þernia
     • Dad
     @noyoushutthefuckupdad @pernia @sun Metasploit is a freely available exploit framework with a database of premade exploits ready to be used. Nobody that's serious about attacking systems uses it for many reasons, but since it's well known, script kiddies use it a lot.
     
     The "mark of exploitation" is just something you put on the main page after you successfully attacked it. Sort of like animals marking their territory. Niggy uses grey background with neon green text and abbreviations like CNO, CNE, NIGINT, NONORM. US Gov uses the "This site has been seized by the FBI" page. The 4chan attacker used a remix of a Touhou song called Night of Nights and a Miku Hatsune gif as their mark. Along with an image talking about the soyjak party image board and the deletion of the /qa/ board (the main motivation behind the attack).
     
     Hopefully I didn't bore you with details. :blobcatsmol:
     ✙ dcc :pedomustdie: :phear_slackware: likes this.
   • Embed this notice
     ins0mniak (ins0mniak@mikoshidata.cloud)'s status on Wednesday, 16-Apr-2025 07:49:28 JST ins0mniak

     in reply to

     • þernia
     • Dad
     • Phantasm
     @phnt @pernia @noyoushutthefuckupdad @sun Metasploit is the equivalent of getting drunk and robbing a store by tossing a brick trhough their window. Its gonna light up an IDS like a Christmas tree.
     ✙ dcc :pedomustdie: :phear_slackware: and Phantasm like this.
   • Embed this notice
     Honey Badger Supreme 🇮🇪 (honeybadgersupreme@noauthority.social)'s status on Wednesday, 16-Apr-2025 07:53:17 JST Honey Badger Supreme 🇮🇪

     in reply to

     • þernia
     • Dad
     • Phantasm

     @phnt @pernia @noyoushutthefuckupdad @sun they used FreeBSD and didn't even take the time to put it in a jail? At least buy yourself some time. (Aside from actually running updates more than every 10 yrs.)

     Phantasm likes this.
   • Embed this notice
     Pawslut420 (sendpaws@mitra.pawslut.party)'s status on Wednesday, 16-Apr-2025 08:00:56 JST Pawslut420

     in reply to

     • þernia
     • Dad
     • Phantasm

     @phnt @pernia @noyoushutthefuckupdad @sun The thing worth mentioning about the sharty is very simple: just like 4chan they are not the "hacker known as 4chan" but rather a loose group of internet posters.

     So while the community as a whole might love ordering pizzas and raiding, there's going to be a person there inevitably who knows how a computer works. More importantly; a lot of people probably incorrectly assumed 4chan was more secure than it actually was.

     ✙ dcc :pedomustdie: :phear_slackware: and Phantasm like this.
   • Embed this notice
     Thomas Roiloup (thomasroiloup@shitposter.world)'s status on Wednesday, 16-Apr-2025 08:36:42 JST Thomas Roiloup

     in reply to

     • þernia
     • Dad
     • Phantasm
     @noyoushutthefuckupdad @phnt @pernia @sun
     Phantasm likes this.
   • Embed this notice
     イリエ (irie@fsebugoutzone.org)'s status on Wednesday, 16-Apr-2025 08:36:59 JST イリエ

     in reply to

     • þernia
     • Dad
     • Phantasm
     @phnt @noyoushutthefuckupdad @pernia @sun lol never underestimate qa autists
     Phantasm likes this.