9 comments

[ 2.9 ms ] story [ 27.4 ms ] thread
This is dumb beyond belief. It has been well documented that The Gab folks created an account for Trump just in case he wanted to join them. Trump has never had a Gab or Parler account.
It's interesting how the hacking of Gab, just like countless other crimes against right-leaning individuals is accepted even in the Hackernews community.
A lot of (American) HN attendees would probably be ok if the CCP/great fireway, middle eastern terrorists or any other entities associated with propaganda and violence were hacked. It’s not just the properties used by right-leaning American terrorists that are not held in high regard.
"Right leaning" is not the proper description of the populations using gab
Accepted how? Nobody is cheering. Nobody is making value judgements one way (this was good) or another (this was bad). We talk about breaches and password dumps here all the time. It is interesting from the information security perspective. The specifics mechanism of the attack is interesting, the unearthed secrets are interesting. This article centers around a reserved account. It is not that interesting. It seems the CEO reserved an account for our failure of an ex president, but this is not surprising or much of a revelation. The specific mechanism of the attack (a change that disabled input sanitization allowing for sql injection) was posted earlier and was quite interesting. Also the fact that the hashes have been cracked, that's pretty interesting too. Gab should be initiating password resets instead of fighting people on twitter about whether hashes can be cracked.
Crazy. It’s almost as if we are on a news site for hackers
Impersonating the president sounds like an offence?
The Gab Trump account only reposted his tweets, speeches, and email statements.

The account description says it's "reserved" for the president, though it should be made clear which account was actually running it.

I actually signed up for Gab a while back, thinking Trump was on there...then read the fine print.

Hashed passwords. Not encrypted. Encryption is reversible. Turning the hashed passwords into plaintext requires hash cracking.