{"id":10525,"date":"2021-01-12T10:02:23","date_gmt":"2021-01-12T18:02:23","guid":{"rendered":"http:\/\/bone-in-the-throat.com\/Blog\/?p=10525"},"modified":"2022-10-17T10:45:54","modified_gmt":"2022-10-17T17:45:54","slug":"and-the-hits-just-keep-on-coming","status":"publish","type":"post","link":"https:\/\/bone-in-the-throat.com\/Blog\/2021\/01\/12\/and-the-hits-just-keep-on-coming\/","title":{"rendered":"And the hits just keep on coming."},"content":{"rendered":"\n

There was this lovely article yesterday on Breitbart. The original article is linked here<\/a>. I’ve copied the article below.<\/p>\n\n\n\n

I submit that this data breach is a direct result of Amazon Web Services negligence. This data wouldn’t have been exposed if they 1) Hadn’t de-platformed Parler. 2) Had provided reasonable notification and time to Parler to remove their data from AWS servers.<\/p>\n\n\n\n

I won’t be surprised if the leaked user data ended up on one of The Lincoln Projects communistic hit lists.<\/p>\n\n\n\n

Now, I as one of the class of individuals potentially affected by AWS and Twilio’s negligence DEMAND restitution.<\/p>\n\n\n\n

I’d like to see a class action lawsuit against AWS and Twilio on the part of the verified members of Parler.<\/p>\n\n\n\n

Parler said they verified members for security. Part of the Terms of Service, If I recall correctly, was that if you engaged in unlawful behavior as a verified user, that Parler could and would provide your information to appropriate law enforcement. I personally had no problem with that. It seemed reasonable and correct.<\/p>\n\n\n\n

I do<\/em><\/strong> have a major problem with my data being scraped and distributed across the internet. It’s one thing to provide information as a law abiding citizen in exchange for access and posting privileges on a site. It’s quite another thing to have my data made public in an age of cancel culture and rabidly communistic behavior on the part of a specific party within our own government. <\/p>\n\n\n\n

\n\n\n\n
\n
\n

Parler Suffers Massive Data leak<\/p>\n\n\n\n

Recent reports claim that 70 terabytes of user data from social media network Parler have been leaked online.<\/p>\n\n\n\n

CyberNews reports<\/a> that self-drscribed security researchers performed a massive data scrape of the social media network Parler before it was taken offline by Amazon Web Services. The data scrape captured user profile data, user information, and other private and administrative information.<\/p>\n\n\n\n

A Twitter user going by @donk_enby announced the scrape, claiming that over a million video URLs had been collected. Twitter itself suffered<\/a> a massive hack of prominent accounts in 2020.<\/p>\n\n\n\n

I am now crawling URLs of all videos uploaded to Parler. Sequentially from latest to oldest. VIDXXX.txt files coming up, 50k chunks, there will be 1.1M URLs total: https:\/\/t.co\/YUl8CtoeEA<\/a><\/p>

This may include things from deleted\/private posts.<\/p>

\u2014 crash override (@donk_enby) January 10, 2021<\/a><\/p><\/blockquote>\n\n\n\n

The Twitter account claims that the posts are linked to accounts that posted them and some of the video and images contain location information. It\u2019s also said to include data from Parler\u2019s \u201cVerified Citizens,\u201d which are users of the network who have verified their identity by uploading photographs of government-issued IDs such as a driver\u2019s license or passport.<\/p>\n\n\n\n

The data scrape also appeared to include deleted posts which would mean that Parler kept user data after users attempted to delete it.<\/p>\n\n\n\n

a sample of what’s in there pic.twitter.com\/5o8CBRrmgc<\/a><\/p>

\u2014 crash override (@donk_enby) January 9, 2021<\/a><\/p><\/blockquote>\n\n\n\n

Parler has previously claimed to have over 10 million users but was shut down after google and Apple removed the website\u2019s smartphone apps from their app stores. A short time later, Amazon Web Services announced they would be removing the site\u2019s hosting services, alleging that Parler failed to properly moderate its platform.<\/p>\n\n\n\n

Some Reddit users allege that the user data scrape was made possible due to Twilio, an American cloud communications platform that provided Parelr with a phone number verification service and has since cut ties with the company.<\/p>\n\n\n\n

In a press release announcing plans to cut ties with the platform, Twilio revealed which services Parler was using which allowed hackers to determine that it was possible to create users and verified accounts without actual verification.<\/p>\n\n\n\n

Once the was discovered, they were allegedly able to get behind the login box API that is used for content delivery, allowing them to see which user shad moderator rights and in turn allowing them to reset passwords of existing users. As Twilio was no longer authenticating emails, hackers were able to access admin accounts easily.<\/p>\n\n\n\n

Breitbart News has reached out to Parler for comment on this story.<\/p>\n\n\n\n

Lucas Nolan is a reporter for Breitbart News covering issues of free speech and online censorship. Follow him on Twitter <\/em>@LucasNolan<\/a> <\/em>or contact via secure email at the address lucasnolan@protonmail.com<\/a><\/em><\/strong><\/p>\n<\/div><\/div>\n<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"

There was this lovely article yesterday on Breitbart. The original article is linked here. I’ve copied the article below. I submit that this data breach is a direct result of Amazon Web Services negligence. This data wouldn’t have been exposed if they 1) Hadn’t de-platformed Parler. 2) Had provided reasonable notification and time to Parler … <\/p>\n

Continue reading “And the hits just keep on coming.”<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[84,10,9,66],"tags":[188,173,174,172],"class_list":["post-10525","post","type-post","status-publish","format-standard","hentry","category-bullshit","category-modern-problems","category-technology","category-wtf","tag-bullshit","tag-modern-problems","tag-technology","tag-wtf"],"_links":{"self":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/10525","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/comments?post=10525"}],"version-history":[{"count":2,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/10525\/revisions"}],"predecessor-version":[{"id":10527,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/posts\/10525\/revisions\/10527"}],"wp:attachment":[{"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/media?parent=10525"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/categories?post=10525"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bone-in-the-throat.com\/Blog\/wp-json\/wp\/v2\/tags?post=10525"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}