Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Jackie Singh (Inactive) Profile picture
@HackingButLegal
Jul 10, 2024 18 tweets 6 min read Read on X
I am reviewing this alleged hack of The Heritage Foundation.

I have identified very embarrassing data within this dataset. Why so many Chinese IP addresses? 🤔
The zipped file contains one single file:

"daily-signal_dev_database_new.sql"

This appears to be a combined set of exports from a SQL database. Here are the first lines Image
Because this is a combined export (likely from the command line) of various tables, the file is not readable by a typical SQL editor, and needs to be split into pieces to make it so.

I'd rather just turn it into CSV chunks to start cleaning up the dataset for further analysis
There are 215,000 lines or so in the WordPress Comments table. As you can see, comment_author_IP is available, which is broadly useful to get a sense of where people posting replies to the Heritage blog are coming from in the world.

Earliest date: 2008-01-04. Newest: 2022-11-09 Image
After creating a CSV chunk with only the WP comments table, now I can view columns and extract their content as needed. After extracting IP addresses from the author column, I can eliminate duplicates and work on analyzing their presumed geo origin, which is of interest to me Image
Dataset was a little dirty and a hassle to clean up.

Here are the 60K extracted IPs from the WP Comments table:

#HeritageFoundation defuse.ca/b/PTrmvlbs
Image
Sample geolocations from the first 100 IPs (these are sorted 'low to high', and many Asia-based netblocks start with the number 1) Image
Spies in the dataset

Here are the 69.5K email addresses present within the complete dataset:



🤔 235 .mil and .gov email addresses
🤔 95 .ru and .cn email addresses

#HeritageFoundationdefuse.ca/b/mLXCi0iXsGFj…
Linked below is a statistical breakdown of the domain names associated with all email addresses in the dataset.

Stacking and counting are basic analytical tools which can help analysts identify outliers.

defuse.ca/b/GMCj2uAfvELn…
Image
I have a script running to grab geolocation information and will tweet when it finishes.

Those working at big companies with access to certain commercial tools can do this more quickly than I can.
Because the original host took the file down, you can now find it here:

This is a 368 MB .zip file which uncompresses to a single 1.94 GB flat file.

SHA256: 3dcc258331d9139a654402d20b756b57ca17228aa9e2f80a4b6451b96c8eac70tan-medieval-hornet-252.mypinata.cloud/ipfs/QmVwiYsr4…
The hacker group claiming responsibility for this action has released new information on their Telegram channel. Image
Here is the list of Administrators.

defuse.ca/b/ely6s7iwqpLF…
BREAKING: SiegedSec claims to have officially disbanded.

#HeritageFoundation
Image
Image
Updated download link
@CloudsEdgeArt1 I am the first person covering this.
@loudmog cloudflare-ipfs.com/ipfs/QmVwiYsr4…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Jackie Singh (Inactive)

Jackie Singh (Inactive) Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @HackingButLegal

Jackie Singh (Inactive) Profile picture
Oct 25
Everyone's busy debating past White House renovations; a distraction bad actors want!

But Trump's new ballroom more closely mirrors Hitler's Reich Chancellery: scale/timing/symbolism echo a dark legacy, not traditional American architecture.

What are we really looking at? 🧵👇 The East Wing of the White House (L) in a satellite photo captured by Planet Labs PBC on Sep 26, 2025 along with a photo captured on Oct. 23, 2025. Credit: Planet Labs PBC. Source: https://abcnews.go.com/Politics/new-images-show-entire-white-house-east-wing/story?id=126800684
Built in record time by his architect Albert Speer, Hitler’s New Reich Chancellery was a monumental space made to impress/intimidate. Its ballroom was richly decorated w/ marble & fine woods. It was a grand diplomatic reception area symbolizing Nazi power. Image
That ballroom and a grand reception hall were added to the Chancellery by architects Paul Troost & Leonhard Gall in 1935.

Lavish & vast, they were used mainly for official state events, and were part of the larger complex with military and underground bunkers beneath. Image
Image
Read 10 tweets
Jackie Singh (Inactive) Profile picture
Oct 23
💀😭 Image
en.wikipedia.org/wiki/Ratlines_…
$200 million in 1945 had purchasing power roughly equivalent to about $3.75 billion in 2025 dollars. Image
Read 22 tweets
Jackie Singh (Inactive) Profile picture
Oct 8
Confused victim of MAGA disinformation
The large number of bots on this thread demonstrate my point. MAGA disinformation kills!

A Dilation & Curettage is the standard procedure used to remove a fetus from the womb after premature death. The baby dying does not change pregnancy status. Only voiding the womb does that.
Please Google this procedure and understand what has been taken from us under the law.

Making abortion illegal is evil, and so are MAGA ideologies.
Read 5 tweets
Jackie Singh (Inactive) Profile picture
Sep 11
Is there anyone else out there with a funny feeling about this whole Charlie Kirk thing? Image
Image
I don't have any good explanations for this discrepancy. A journalist should ask Amazon about it.

archive.is/VGsXM
@grok The book shown in the screenshot above was self-published on Amazon on Sept 9, yet centers around an event which occurred on Sept 10. Tell me which time zones make this possible given exact timing of the event & how much time a writer might need to format it for Amazon.
Read 4 tweets
Jackie Singh (Inactive) Profile picture
Aug 18
FYI this is Putin's narrative
The goal is always to make Zelensky look bad and Ukraine undemocratic for postponing elections despite the reality that the country is not in a state to hold an election successfully without external interference.
Further, changes of leadership during times of war can provide fissures which spell certain failure in the face of said covert interference, and Putin knows this well.

The Kremlin's strategy is to fracture public opinion amongst those who do not understand the issues.
Read 4 tweets
Jackie Singh (Inactive) Profile picture
Aug 16
I spent 10 years building my body, and lost it all in a few months… this is what life did to me

THREAD 🧵 Image
Image
Before everything changed, I was a bodybuilder and trainer in Gaza. I weighed 108kg, full of muscle, strength, and hope.

I was well known in the fitness community and helped many athletes become champions. Image
I loved inspiring people to take care of their bodies and mental health. I lived a beautiful life with my wife and young son.

We were happy.

Then, life took a turn I never expected. Image
Read 9 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(