- cross-posted to:
- tech@kbin.social
- cross-posted to:
- tech@kbin.social
cross-posted from: https://chat.maiion.com/post/3401
Reddit’s week appears to have gone from bad to worse, as AlphV (aka BlackCat) has claimed that operators broke into Reddit’s servers on February 5, 2023, and took 80 GB of zipped data. . Furthermore, Reddit has been contacted by BlackCat, once on April 13 and again on June 16, with no response and no attempt to find out what was taken. Following recent fallout from the subreddit blackouts, and the controversial comments from CEO Steve Huffman, Reddit has been having a tough time in the eyes of its users who have been reportedly leaving the platform and setting up alternatives on the fediverse (such as Lemmy or kbin), used by the Twitter alternative Mastodon.
https://www.databreaches.net/blackcat-claims-they-hacked-reddit-and-will-leak-the-data/
You must log in or register to comment.
Remember when reddit was hip enough to have a canary system and now they don’t even disclose hacks anymore. It’s not the same platform. Good riddance.
I mean, to be fair they disclosed it immediately. https://www.redditinc.com/blog/sharing-our-findings-around-a-data-security-incident
Good point. Didn’t notice that detail in the linked articles.
God I remember reading about Reddit’s warrant canary being taken down.
I remember thinking that it was no big deal and it will always be the same.
How wrong and naive I was lol
it’s so weird to me that dead canarys are not half as big a thing as I’d expect them to be
For example, it’s been close to a decade since Apples Warrant Canary died, and still people consider Apple trustworthy with their data…I wonder if it’s not so much that people don’t care but rather that every big tech company will inevitably receive such warrants. Even if you don’t use those services, most devices by default use the (probably backdoor-ed) NIST ECC algorithms.
Sounds like reddit is having a bad year.
sips coffee
Oh well. How’s everyone’s Sunday? I’m making pulled pork sliders tonight.
I did laundry at my parents place with my wife. She’s scared of my mom so we did it while they were out of town.
Tried a really good Italian place with the wife afterward was a good date.
Pad Thai with zucchini, squash, and cilantro from my garden. Eggs are from my chickens. Everything else super fresh from a local farmers market.
Spez did a little FAFO dance.
I spent the day playing Subnautica on my Switch, cuddling with my dog, and trying to recover from dehydration caused by the wicked sunburn I got yesterday. Finally feeling better internally. My skin is killing me tho. I can’t even apply aloe because my burn is on my back and I can’t reach it. Gotta love living alone lol.
what if you were to lay down plastic wrap on the floor, spred a puddle of aloe vera gel on top and then lie down on top of the puddle?
Haven’t decided.
Maybe ziti with meat balls and marinara, or some bratwurst with potatoes.
I’m making burritos with rice, refried beans that I forgot were homemade, guacamole (with onions this time), and some Beyond ground beef seasoned with the spices in the cabinet that I like but can’t name.
Smash burgers on the new flattop I just finished seasoning.
Pulled pork sliders sounds like a great plan for an upcoming weekend
Mexican discada tacos over here
Im currently deep in Unix books
Who is Unix books, and where did you meet her?
The library
Great , we need all the more Bad news spreading about reddit.
they did the entire stunt to open for IPO likely this will screw them.
If that includes user data (such as emails, phone #s, social media accounts, etc.) that’s bad news for all of us who have or had accounts with them.
Good thing I never gave reddit any of those, despite their continued nagging over the years…
Why would reddit have your phone #s, social media accounts, etc?
They’re sign up options. You can sign up with Google, Apple, email and they ask users for their phone number for some reason as well iirc.
I’m not nearly techy enough to discuss this in detail, but I thought that reddit itself doesn’t really see that data (google password), thought it was an API that validated the log in. I’d be very happy to be corrected if wrong, however.
Yes, that’s true for your Google password, but google does share your name, email and profile picture with the platform and “Third-party apps or services may use your email address, name, and profile picture in other ways as described in their privacy policy or elsewhere”. I’m not sure what Apple sign-in shares, but they probably give your email and name at a minimum.
Adbux
They really wanted $4.5mil for some data? Looks like Spez took a page outta this guy’s book lmao
Funny how my comment on lemmy is on a post about a massive hack on Reddit, because of their bullshit tactics. mlem seems to be like Apollo-ish.
80GB, even zipped, doesn’t sound like a lot considering the size of Reddit… or am I wrong about it?
A snapshot of all of reddit’s public text posts up to March 2023 runs about 38GB compressed (zstd) on archive.org. Decompressed, it’s well over 300GB.
An internal zstd of 80GB may contain private messages as well or other morsels.
It’s internal stuff, so yeah 80gb could be quite damning, the group claims it shows things reddit doesn’t want people to see.
This is why I hate when articles mention the size of the data - that rarely actually matters. What matters is what makes up the data - 80GB is one BluRay, or the entirety of English Wikipedia’s text.
If it’s only text, it’s four times as big as the entirety of English Wikipedia.
