Share this page!

Maybe Scrolly?
Mikael Thalen Profile picture
Twitter logo
21 Oct, 9 tweets, 5 min read
NEW: I spoke with the hacker who discovered that Trump's new social media platform 'TRUTH Social' was openly accessible online.

Here's how they found it: dailydot.com/debug/hacker-t…
The hacker, who asked not to be identified but claimed affiliation with the hacking collective Anonymous, first noticed the name of the company behind TRUTH Social's app: T Media Tech LLC.

dailydot.com/debug/hacker-t…
The hacker then used Shodan, a search engine that finds servers exposed to the open web, to look for any domains linked to T Media Tech LLC.

dailydot.com/debug/hacker-t…
That's how the hacker was able to discover the domain mobile.tmediatech[.]io - which appeared to be running the mobile beta for TRUTH Social.

The site allowed anyone to sign up and register an account despite the official launch not being until next year. dailydot.com/debug/hacker-t…
News of the URL made its way soon after to @ThatNotoriousK, who was able to setup numerous accounts including one for QAnon guru Ron Watkins.

Numerous others were able to setup accounts as well.

One user was able to secure the handle @realdonaldjtrump and proceeded to share a meme of a defecating pig.

dailydot.com/debug/trump-tr…
Washington Post tech reporter @drewharwell was able to setup an account on TRUTH Social using the handle @mikepence.

I was able to setup an account with the handle @donaldtrump as well.

TRUTH Social eventually noticed the activity and blocked active users, disabled new signups, and eventually took the entire domain offline.

I emailed TRUTH Social to ask about the incident but did not receive a reply. dailydot.com/debug/hacker-t…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Mikael Thalen

Mikael Thalen Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @MikaelThalen

Mikael Thalen Profile picture
4 Oct
NEW: Hackers operating under the banner of Anonymous have announced a third data leak from the web hosting company Epik.

The leak allegedly contains more bootable disk images as well as a data backup with 'private documents' from the Texas GOP.

dailydot.com/debug/anonymou…
This latest leak comes just days after a 300GB cache containing bootable disk images of Epik's servers were released online, which exposed at least 59 API keys for services such as Twitter, Coinbase, and PayPal.

dailydot.com/debug/anonymou…
The first data leak came on Sept. 13 and exposed 180GB worth of sensitive data from Epik, including customer names, passwords, addresses, credit cards, and more.

dailydot.com/debug/epik-hac…
Read 4 tweets
Mikael Thalen Profile picture
29 Sep
BREAKING: The hacking collective Anonymous has announced another data leak from the web hosting company Epik.

Data includes full disk images of Epik's server infrastructure & exposes at least 59 API keys for Twitter, Coinbase, PayPal, & more.

Story here: dailydot.com/debug/anonymou…
The leak is part 2 of what Anonymous has dubbed “Operation EPIK FAIL.”

The initial leak was made earlier this month and exposed “a decade’s worth” data.

More here: dailydot.com/debug/epik-hac…
Epik CEO eventually responded to the breach of his web hosting company in a 4+ hour long live video conference, where he prayed, rebuked demons, & warned that the hacked data had been cursed and could cause hard drives to burst into flames.

dailydot.com/debug/epik-ceo…
Read 8 tweets
Mikael Thalen Profile picture
27 Sep
NEW: Data from the Oath Keepers has been leaked online after the militia group was allegedly targeted by a hacker.

Data includes chat logs, emails, and information on the group's members and donors.

dailydot.com/debug/oath-kee…
The leaked Oath Keepers data was provided to the journalism & transparency collective DDoSecrets.

DDoSecrets co-founder Emma Best (@NatSecGeek) told the Daily Dot that the data sheds new light on the inner-workings of the militia group.

dailydot.com/debug/oath-kee…
The data includes messages from a Rocket.Chat server, where discussions were held by members on everything from operational security to Jan. 6.

Messages range from March to Sept 2021. An older archive details messages made in June 2020.

dailydot.com/debug/oath-kee…
Read 8 tweets
Mikael Thalen Profile picture
20 Sep
NEW: Days after the Capitol riot, 'Stop the Steal' founder Ali Alexander was racing to hide his ownership of over 100 websites.

But Ali used a domain privacy service from Epik, which was just recently hacked.

Here are the websites Ali tried to hide dailydot.com/debug/ali-alex…
On Jan. 15, just 9 days after the riot, Alexander signed up for a domain privacy service from Epik known as "Anonymize."

The service would replace his name on his websites' public domain registrars with an Anonymized ID. dailydot.com/debug/ali-alex…
But the hack of Epik, reportedly by the hacking collective Anonymous, exposed the unique Anonymize IDs given to Epik customers.

The leak shows an email to Alexander on Jan. 15 thanking him for signing up for the Anonymize service. dailydot.com/debug/ali-alex…
Read 6 tweets
Mikael Thalen Profile picture
16 Sep
NEW: The hack of web hosting company Epik has revealed the names behind some of the most notorious far-right sites.

A cybersecurity expert I analyzed the data with said Epik was “fully compromised.”

“Maybe the worst I’ve ever seen in my 20-year career.” dailydot.com/debug/epik-hac…
As first revealed on Monday by @stevanzetti, the hacking collective Anonymous announced that it had hacked Epik, whose customers have included Parler, Gab, and forums such as TheDonald. dailydot.com/debug/epik-hac…
As I noted yesterday, the breach includes the email inbox of an Epik employee that regularly spoke with CEO Robert Monster.

I attempted to speak over the phone with Monster by calling him on the personal cell number listed in his email signature but did not receive a reply.
Read 9 tweets
Mikael Thalen Profile picture
30 Jul
Exclusive: Leaked chats reveal how the former lead psychologist for Cambridge Analytica is secretly working behind the scenes to influence anti-vaccine efforts.

dailydot.com/debug/leaked-c…
Patrick Fagan, who has worked for Cambridge Analytica, the tobacco and gambling industries, as well as on voter deterrence campaigns, is secretly aiding the UK-based organization known as HART.

dailydot.com/debug/leaked-c…
HART is a self-described group of 'highly qualified UK doctors, scientists, economists, psychologists and other academic experts.'

But their private chats reveal a group inundated with QAnon-type conspiracy theories.

dailydot.com/debug/leaked-c…
Read 7 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @MikaelThalen has new unrolls!

Check out other threads from @MikaelThalen!

Read all threads by @MikaelThalen

:(