• Laille@kbin.social
    link
    fedilink
    arrow-up
    1
    ·
    2 years ago

    lol, fuck reddit, but do they expect us to cheer for them when they’re holding user data hostage? They can fuck right off too.

  • Hyperi0n@lemm.ee
    link
    fedilink
    arrow-up
    1
    ·
    2 years ago

    I wonder if u/spez ordered this hack so he can back off and save face. Of course I don’t know the context but that’s the first thing that comes to mind.

      • BLAMM67@beehaw.org
        link
        fedilink
        arrow-up
        1
        ·
        2 years ago

        Maxim 29: The enemy of my enemy is my enemy’s enemy. No more. No less.

        -The Seventy Maxims of Maximally Effective Mercenaries

  • Rachel@derp.foo
    link
    fedilink
    arrow-up
    0
    ·
    2 years ago

    Is there any information on what kind of data they stole? It’s a public forum with a lot of public data, it makes no sense that they negotiate about data that is already public.

    • tal@kbin.social
      link
      fedilink
      arrow-up
      0
      ·
      2 years ago

      Well, assuming that this is even directly related to the forum, as opposed to, say, email logs from the Reddit internal email server or something, things that might not be public:

      • Private messages between users.

      • Browsing data. I mean, maybe a user only posts on /r/politics, and that’s public, but spends a lot of time browsing /r/femdom or whatever.

      • IP addresses of users. Might be able to associate multiple accounts held by a user.

      • Passwords. While hopefully stored in a salted and hashed format, so they can’t be simply trivially obtained, they can still be attacked via dictionary attacks, which is why people are told not to use short and predictable passwords.

      • Email addresses (if a user registered one)

      • Reddit has some private chat feature that I’ve never used, which I imagine is logged.

  • totorohno@lemmy.one
    link
    fedilink
    arrow-up
    0
    ·
    2 years ago

    Fuck spez, but this is not the way. Why even ask for money if they don’t expect Reddit to pay? That cheapens their cause.

  • narc0tic_bird@beehaw.org
    link
    fedilink
    arrow-up
    0
    ·
    2 years ago

    So they “broke into Reddit” back in February and contacted Reddit in April. After Reddit didn’t react they contacted them again a few days ago at this very opportunistic time.

    They never specified exactly what kind of data they stole, nor did they prove it by providing samples.

    For all we know this story could be entirely made up and they actually have nothing.

    But even if they have something, them trying to come across as the good guys in this is so weird to me. No, you’re not the good guys. You are criminals.

      • Kaldo@kbin.social
        link
        fedilink
        arrow-up
        1
        ·
        2 years ago

        “I believe you find life such a problem because you think there are good people and bad people. You’re wrong, of course. There are, always and only, the bad people, but some of them are on opposite sides.”

    • vandrw@mander.xyz
      link
      fedilink
      arrow-up
      0
      ·
      2 years ago

      No, haha. They also didn’t bother to check what was stolen, so they could have very well gotten 80G of memes.

        • I_Miss_Daniel@kbin.social
          link
          fedilink
          arrow-up
          0
          ·
          2 years ago

          How do people even know what’s been stolen? I know if someone logged into my server and copied stuff, they only way I’d know would be higher data usage.

          • AtomicPurple@kbin.social
            link
            fedilink
            arrow-up
            1
            ·
            2 years ago

            Either server logs, or the hackers sending them part of the data they have to prove they’re ligit. I assume the latter would have happened if Reddit had shown any interest in negotiating.

  • Th4tGuyII@kbin.social
    link
    fedilink
    arrow-up
    0
    ·
    2 years ago

    I want the API changes reverted as much as any other Reddit refugees here, but I can’t stand behind this kind of malfeasant extortion.

    Not only is it blatantly obvious they’re using the API change rhetoric as a means of irritating Reddit into giving them their hush money, it also avts towards delegitimising all protest efforts made by the Subreddits thus far

      • BlueBockser@programming.dev
        link
        fedilink
        arrow-up
        0
        ·
        2 years ago

        But as the text says, this extortion began 5 days before the API changes were even announced. These criminals don’t give a f*ck about the API and threaten to leak the data of those same users they’re claiming to protect.

        I think we should just ignore this, because it’s a distraction for public pressure and will only make Reddit look better - either by delegitimising the protest or by making them look like a victim instead of the perpetrator they are.

          • niktemadur@kbin.social
            link
            fedilink
            arrow-up
            1
            ·
            2 years ago

            I’m going to say what you did, more diplomatically:

            While I don’t condone extortion via hacking or any other means, I acknowledge that Reddit and its’ dysfunctional, incompetent corporate culture - with Huffman at the top - brought this development upon themselves.