You gotta find the people to prosecute too. That's the problem. They all hide behind VPN's and proxy's so it makes it hard to pin them down and you KNOW the Federal Government isn't interested in going after them like they did Wikileaks and Anon. So they're going to try to blackmail Gab's CEO for the data, and regardless of if he pays out or not, they're going to leak it. Because that's what they do.
For some reason, I find 70GB of data hard to believe. Gab seemed to be on top of the breach and I highly doubt they were able to get that much data in that short amount of time. I think a lot of that is bluffing.
Shit, they might not even have data at all. That's the shit part about blackmail. They can just CLAIM they did it and if their demands aren't met, they'll leak the data. But you can't leak what you don't have. And regardless, if they have the data, they're going to leak it anyway. So, at the end of the day, it'd be stupid to cave to their demands. Because if they have it, they're going to leak it. If they don't, they're bluffing and won't leak anything. And no amount of pandering is going to change that.
Fuck them. Leak it. I don't see the problem. The media would need massive databases to cross reference emails addresses that are stored, but most people just post under their real name anyway, so who cares?
Depends on the encryption algorithm. If it's something outdated like MD5, sure. If they used something like AES-256 with a proper-sized (>1024b) key, it wouldn't be worth the effort.
Depends on the salt they used and the number of rounds of AES they used.
If they didn't salt their hashes then it's easy to make a rainbow table of well known passwords and match them to users, regardless of hashing algorithm.
Sue the individual; full lawfare. IANAL, but you either looking at defamation or loss of income. However it has to be classified, you are driving people away from Gab by hacking or pretending to hack to scare people away so it's costing you business.
You gotta find the people to prosecute too. That's the problem. They all hide behind VPN's and proxy's so it makes it hard to pin them down and you KNOW the Federal Government isn't interested in going after them like they did Wikileaks and Anon. So they're going to try to blackmail Gab's CEO for the data, and regardless of if he pays out or not, they're going to leak it. Because that's what they do.
For some reason, I find 70GB of data hard to believe. Gab seemed to be on top of the breach and I highly doubt they were able to get that much data in that short amount of time. I think a lot of that is bluffing.
Shit, they might not even have data at all. That's the shit part about blackmail. They can just CLAIM they did it and if their demands aren't met, they'll leak the data. But you can't leak what you don't have. And regardless, if they have the data, they're going to leak it anyway. So, at the end of the day, it'd be stupid to cave to their demands. Because if they have it, they're going to leak it. If they don't, they're bluffing and won't leak anything. And no amount of pandering is going to change that.
Fuck them. Leak it. I don't see the problem. The media would need massive databases to cross reference emails addresses that are stored, but most people just post under their real name anyway, so who cares?
Should just call the bluff.
The 'hackers' only have encrypted passwords, which are useless. If they had the actual passwords, they would have threatened to release those.
DMs are mostly worthless, and I bet a lot of them are fabricated.
They are probably hashed passwords, 95% of which could be very easily cracked. Most people use the same password for multiple sites, too.
Depends on the encryption algorithm. If it's something outdated like MD5, sure. If they used something like AES-256 with a proper-sized (>1024b) key, it wouldn't be worth the effort.
Depends on the salt they used and the number of rounds of AES they used.
If they didn't salt their hashes then it's easy to make a rainbow table of well known passwords and match them to users, regardless of hashing algorithm.
He's correct. The variable is whether or not the person who does this gets caught. If they're smart, highly unlikely.
Assuming they aren't a government entity
Sue the individual; full lawfare. IANAL, but you either looking at defamation or loss of income. However it has to be classified, you are driving people away from Gab by hacking or pretending to hack to scare people away so it's costing you business.