drifty,
@drifty@lemmy.ml avatar

Can you share the onion link here

red,
borlax,

Is it safe to assume that nothing comes of this... Just like every other "hacker group" pretending they hacked some major entitity for a good cause?

mrmanager,
@mrmanager@lemmy.today avatar

Nice plot twist. Soon we can write a book about all this... :)

sourcery,

I wouldn't give them a cent or negotiate at all either, and the public aren't going to give a shit about how they're being tracked.

tal,
tal avatar

I kind of assumed that everything that could be logged was, and that it would be data-mined insofar as value could be extracted from it down the line.

StudioLE,

If that were the case it would likely breach GDPR.

Deestan,

Negotiating is futile. They can never prove beyond "trust me bro" that they deleted the data, nor that they kept it secret, so why would they actually follow up?

Whatever they have, if it is good they have already sold it to several interested parties under the table, and they will continue to do so. This is just an attempt to grift out a bit of extra cash.

Hyperi0n,
@Hyperi0n@lemm.ee avatar

I wonder if u/spez ordered this hack so he can back off and save face. Of course I don't know the context but that's the first thing that comes to mind.

Hyperi0n,
@Hyperi0n@lemm.ee avatar

Nah, reading this no this hack is personal. They hacked this site months ago and now they're coming in here looking the heroes of the story? No, they were ignored. The hackers got pissed and now they're using this as an opportunity to get back at reddit. So what, they got maybe a terabyte of decompressed data at most, and they want 4 million dollars? This feels like some script kiddies utilizing a bad situation after getting ignored, not a professional op.

Th4tGuyII,
Th4tGuyII avatar

I want the API changes reverted as much as any other Reddit refugees here, but I can't stand behind this kind of malfeasant extortion.

Not only is it blatantly obvious they're using the API change rhetoric as a means of irritating Reddit into giving them their hush money, it also avts towards delegitimising all protest efforts made by the Subreddits thus far

ipkpjersi,

While I agree with you, it's also hard for me to feel bad for Reddit in this scenario.

I think it's not relevant to our cause either way and it's something that will be forgotten about eventually even if whatever data gets leaked publicly.

We just gotta focus on making Lemmy better and more desirable.

!deleted120991,

deleted_by_author

  • Loading...
  • Th4tGuyII,
    Th4tGuyII avatar

    Karma IS a bitch, but I for one am still not going to stand behind illegalities like this. It's not the way.

    As I said before, these hackers don't care. The grandstanding is their way of getting attention off the backs of the protests. All supporting these criminals does is delegitimise the real protest by making Reddit look like the victim.

    That aside, even from a practical standpoint this wouldn't work longterm. If extorted into backpeddalling, Reddit will just quietly up their data security, and once they've made sure the threat of a leak is dealt with, they'll go right on back to the API change.

    BlueBockser,

    But as the text says, this extortion began 5 days before the API changes were even announced. These criminals don't give a f*ck about the API and threaten to leak the data of those same users they're claiming to protect.

    I think we should just ignore this, because it's a distraction for public pressure and will only make Reddit look better - either by delegitimising the protest or by making them look like a victim instead of the perpetrator they are.

    !deleted120991,

    deleted_by_author

  • Loading...
  • niktemadur,
    niktemadur avatar

    I'm going to say what you did, more diplomatically:

    While I don't condone extortion via hacking or any other means, I acknowledge that Reddit and its' dysfunctional, incompetent corporate culture - with Huffman at the top - brought this development upon themselves.

    Th4tGuyII,
    Th4tGuyII avatar

    But when that spanking both threatens the very users they're claiming to fight for, and threatens to delegitimise all of those user's and moderator's protest efforts by giving Reddit a victimhood, I think it is downright stupid to cheer that on

    nigh7y,

    Any proof they have what they say they have? If they can't, at the very least, make that bit public, then imma have to call it a bluff.

    Hellebert,

    Haha suck shit!

    Realizes it's probably my data too.

    argv_minus_one,

    Yeah. These guys aren't heroes. They're threatening to screw us.

    Kowowow,

    Ooh ThE rEdDiT fIlEs I can only hope it's more interesting than the twitter files

    narc0tic_bird,
    @narc0tic_bird@beehaw.org avatar

    So they "broke into Reddit" back in February and contacted Reddit in April. After Reddit didn't react they contacted them again a few days ago at this very opportunistic time.

    They never specified exactly what kind of data they stole, nor did they prove it by providing samples.

    For all we know this story could be entirely made up and they actually have nothing.

    But even if they have something, them trying to come across as the good guys in this is so weird to me. No, you're not the good guys. You are criminals.

    slacktoid,
    @slacktoid@lemmy.ml avatar

    Better people than spez (or whatever). Also every tech company is worse in every way than these people.

    SHITPOSTING_ACCOUNT,

    February? Then I believe they have obtained a full copy of all posts and comments on the site. /s

    (For those who don't get the joke: https://github.com/Watchful1/PushshiftDumps - full dumps of all Reddit data up to February exist, and I think archive.org has the March file too)

    Stumblinbear,
    @Stumblinbear@pawb.social avatar

    They may be the bad guys, but they're not necessarily bad guys

    Kaldo,
    Kaldo avatar

    “I believe you find life such a problem because you think there are good people and bad people. You're wrong, of course. There are, always and only, the bad people, but some of them are on opposite sides.”

    neo,
    @neo@lemmy.comfysnug.space avatar

    Is it weird that I kind of want both groups to lose out here?

    gk99,

    The enemy of my enemy is also my enemy.

    Steeve,

    It's enemies all the way down

    ID10T,

    Always has been.

    BLAMM67,

    Maxim 29: The enemy of my enemy is my enemy's enemy. No more. No less.

    -The Seventy Maxims of Maximally Effective Mercenaries

    HisNoodlyServant,

    80gb? That isn't too much but guess if it's internal information and docs could be damaging to a public offering.

    heartlessevil,

    For context, based on historical pushshift data:

    • 80gb zipped decompresses to ~1100GB of text data
    • 80gb zipped would only be the most recent ~4 months of comments

    They do indicate that the data they have is more valuable though, particularly pointing out how users are being tracked (GDPR alarm bells ringing) or censored.

    maynarkh,

    Might be a single weird Bee Movie video meme as well.

    MedicPigBabySaver,

    I'm going with, no. Or, who cares? No biggie.

    JWBananas,
    JWBananas avatar

    john-oliver-cool-sarcastic.gif

    Put up or shut up

    asjmcguire,
    asjmcguire avatar

    Reddit has been going for like a billion years, and you only got 80GB - I mean even zipped, that can't even be a fraction of the data surely?

    Trebach,

    I could get 80 GB of Reddit data in a day. ArchiveTeam has uploaded 2.97 PB (1PB is 1024 TB or 1048576 GB) so far trying to back up all of Reddit to the Internet Archive and they're still not finished!

    eighty,

    I'd be surprised if the data was just content. Memes and texts aren't particularly valuable.

    However, data that can be used for tracking/developing user profiles such as what they're subscribed to, how active they are, and how they all link to one another is especially useful for conpetetitors and marketers. Plus any personal data such as emails and profiles. I wouldn't be surprised if you managed to get a huge amount of data under 80gb if it's just text (think how big a 80gb excel sheet would be)

    ddnomad, (edited )
    @ddnomad@infosec.pub avatar

    Depends on what kind of data, if it’s mostly internal documents / dumps of whatever communication systems they use etc, it would not be too large (mostly because of retention policies on that software).

    If it is actually the data straight from Reddit’s production databases, then 80GB does sound questionable. But then what kind of data are we talking about? Is it actually valuable?

    Anyways, this is big (if true).

    eggnog,

    internal documents, source code, employee data, and limited data about the company's advertisers.

    https://www.bleepingcomputer.com/news/security/blackcat-ransomware-gang-behind-reddit-breach-from-february/

  • All
  • Subscribed
  • Moderated
  • Favorites
  • technology@beehaw.org
  • DreamBathrooms
  • InstantRegret
  • ethstaker
  • magazineikmin
  • GTA5RPClips
  • rosin
  • modclub
  • Youngstown
  • ngwrru68w68
  • slotface
  • osvaldo12
  • kavyap
  • mdbf
  • thenastyranch
  • JUstTest
  • everett
  • cubers
  • cisconetworking
  • normalnudes
  • Durango
  • anitta
  • khanakhh
  • tacticalgear
  • tester
  • provamag3
  • megavids
  • Leos
  • lostlight
  • All magazines