Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Jackie Singh (Active) Profile picture
@HackingButLegal
Jul 10, 2024 18 tweets 6 min read Read on X
Scrolly
I am reviewing this alleged hack of The Heritage Foundation.

I have identified very embarrassing data within this dataset. Why so many Chinese IP addresses? 🤔
The zipped file contains one single file:

"daily-signal_dev_database_new.sql"

This appears to be a combined set of exports from a SQL database. Here are the first lines Image
Because this is a combined export (likely from the command line) of various tables, the file is not readable by a typical SQL editor, and needs to be split into pieces to make it so.

I'd rather just turn it into CSV chunks to start cleaning up the dataset for further analysis
There are 215,000 lines or so in the WordPress Comments table. As you can see, comment_author_IP is available, which is broadly useful to get a sense of where people posting replies to the Heritage blog are coming from in the world.

Earliest date: 2008-01-04. Newest: 2022-11-09 Image
After creating a CSV chunk with only the WP comments table, now I can view columns and extract their content as needed. After extracting IP addresses from the author column, I can eliminate duplicates and work on analyzing their presumed geo origin, which is of interest to me Image
Dataset was a little dirty and a hassle to clean up.

Here are the 60K extracted IPs from the WP Comments table:

#HeritageFoundation defuse.ca/b/PTrmvlbs
Image
Sample geolocations from the first 100 IPs (these are sorted 'low to high', and many Asia-based netblocks start with the number 1) Image
Spies in the dataset

Here are the 69.5K email addresses present within the complete dataset:



🤔 235 .mil and .gov email addresses
🤔 95 .ru and .cn email addresses

#HeritageFoundationdefuse.ca/b/mLXCi0iXsGFj…
Linked below is a statistical breakdown of the domain names associated with all email addresses in the dataset.

Stacking and counting are basic analytical tools which can help analysts identify outliers.

defuse.ca/b/GMCj2uAfvELn…
Image
I have a script running to grab geolocation information and will tweet when it finishes.

Those working at big companies with access to certain commercial tools can do this more quickly than I can.
Because the original host took the file down, you can now find it here:

This is a 368 MB .zip file which uncompresses to a single 1.94 GB flat file.

SHA256: 3dcc258331d9139a654402d20b756b57ca17228aa9e2f80a4b6451b96c8eac70tan-medieval-hornet-252.mypinata.cloud/ipfs/QmVwiYsr4…
The hacker group claiming responsibility for this action has released new information on their Telegram channel. Image
Here is the list of Administrators.

defuse.ca/b/ely6s7iwqpLF…
BREAKING: SiegedSec claims to have officially disbanded.

#HeritageFoundation
Image
Image
Updated download link
@CloudsEdgeArt1 I am the first person covering this.
@loudmog cloudflare-ipfs.com/ipfs/QmVwiYsr4…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Jackie Singh (Active)

Jackie Singh (Active) Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @HackingButLegal

Jackie Singh (Active) Profile picture
Jan 22
Some stories wound me in the writing. The toll is a stress that burrows deep during research. When the weight grows unbearable, when it overwhelms, I step back, breathe, think. But I will not be ruled by fear. My allegiance is to democracy, and the stakes could not be higher.
The cunning of fear is that it needs no chains. It merely suggests that tomorrow is soon enough, that someone else will speak, and that the risk outweighs the duty. Fear stops the hand before it writes, and closes the throat before it speaks.
Fear is a thief of motion. It wins not by persuasion, but by paralysis. It whispers in our ear that stillness is safety, that silence protects. It makes cowards feel wise, inaction feel reasonable, retreat feel like strategy. So nothing moves. The moment passes, and passes again.
Read 8 tweets
Jackie Singh (Active) Profile picture
Jan 20
For Your Consideration. Image
Image
Note the date and time. lavanguardia.com/politica/20260…
The recent train derailment occurred in Spain's Córdoba province on January 18, 2026 at around 7:45 p.m. local time (6:45 p.m. GMT).

Do your own math. I've ridden on high speed Spanish trains. They are incredibly efficient and well run systems.

A pride of their nation.
Read 10 tweets
Jackie Singh (Active) Profile picture
Jan 9
1/ People who believe Nicole Good was "in the wrong" for trying to drive away from a federal officer are telling us something important about themselves: they value compliance over justice.

That mindset isn’t just misguided. It’s fundamentally un-American. I can explain. 🧵👇
2/ America’s founding story wasn’t about obeying the rules, it was about challenging unjust ones. The Boston Tea Party and civil rights marches are examples of acts of defiance against oppressive power structures.

Justice has always preceded legality in our moral code.
3/ When you prioritize "following the rules" at all costs, you’re effectively saying power defines what’s right. But history shows the opposite: power often needs to be confronted to make things right.

Compliance without conscience is cowardice.
Read 7 tweets
Jackie Singh (Active) Profile picture
Jan 7
Look, man. I was deployed to Iraq 2003-2004. Our unit leadership would provide us highly specific instructions on the Rules of Engagement for any given mission. If we were stepping outside the wire, there was a standing RoE, and we were briefed pre-mission. We knew to obey it.
My point is this: Yes, if you add a bunch of less-trained people to the force, there will be mistakes.

I believe this to be a convenient excuse which obscures reality which fails to account for the sheer number of violent incidents we are observing on American streets.
As an 18 year old brand new, freshly-minted Private, my unit could still trust me; and I could pretty much trust everyone in my unit not to violate the RoE. We had a notion of the consequences, and bloodthirst was not encouraged.

I served in the 4th Infantry Division.
Read 6 tweets
Jackie Singh (Active) Profile picture
Dec 24, 2025
FACT: Sanctions are the most important method of global financial moderation to help keep us safe from the world's worst terrorists.

This key defensive tool is now converted to a weapon of state repression and censorship by Trump admin under false guise of defending free speech.
We're not just talking the regular ol' domestic state repression, either.

The sanctions list has just become a global cleaver to financially terminate Trump's political enemies who are not U.S. citizens nor residents. He seeks to antagonize his targets and send a public message.
The clear message being broadcasted is that opposing Trump or engaging in advocacy which runs counter to the ideology this administration is installing in the U.S. is likely to result in significant consequences.

The admin repeats this message of fear via every channel, daily.
Read 8 tweets
Jackie Singh (Active) Profile picture
Dec 15, 2025
🧵 Authoritarians follow a predictable playbook, and you can often spot it before it is too late. THREAD of core behaviors of dictators who want to hold power at any cost
1. Aggressively centralize power.

They weaken parliaments, courts, and watchdogs, often by using "emergencies" or legal tweaks to concentrate authority in the executive while claiming to respect the rule of law.

nytimes.com/2025/03/20/us/…
2. Rig the game instead of canceling it.

Elections keep their veneer of legitimacy, but rules, districts, oversight bodies, and term limits are quietly manipulated to make losing nearly impossible.

aclu.org/news/voting-ri…
Read 19 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(