From that article: At least three suicides have been tied to harassment stemming from the Kiwi Farms community. Forum participants often openly admit their goal is to drive their targets to take their own lives.
Couldn't have happened to nicer people.
"For a successful technology, reality must take precedence over public relations, for Nature cannot be fooled." - Richard Feynman
I hope some of those dox somehow magically end up in the hands of law enforcement in states that have cyberbullying laws.
Goku Black
Curious what happens when some of these guys have to deal with having their K Kk hoods off in public and discovering people don't like that.
Edited by miraculous on Sep 19th 2022 at 1:17:46 AM
"That's right mortal. By channeling my divine rage into power, I have forged a new instrument in which to destroy you."
"Hitting us is against the law!" ...and also, it's hard to punch a Nazi who's carrying an AR-15.
Still, I hope this browser vulnerability is patched fast, lest it be used on targets that DON'T deserve it.
"And as long as a sack of shit is not a good thing to be, chivalry will never die."
Lost in Space
If I read the article correctly, the vulnerability that was exploited was in a hosting service that Kiwi Farms was using. It has no choice but to shop around for these off-brand providers because the big services have kicked it off.
"It's Occam's Shuriken! If the answer is elusive, never rule out ninjas!"
Visiting from the Hoag Galaxy
This'll probably make even the offbrand ones reconsider hosting them, because usually they can get away with crappy security because no one cares enough about most of their sites to try and attack them. Hosting a thing that people hate and will instantly be attacked by hackers? That's a very unattractive prospect.
Not Three Laws compliant.
![[up]](https://static.tvtropes.org/pmwiki/pub/smiles/arrow_up.png "[up]"){kind=icon}
I was going by your words on it:
Lost in Space
I was trying to avoid excessive detail, and I am not an expert in this. It appears that the trick audio file was served as a legitimate web page component by the provider.
“A bad actor was able to upload a webpage disguised as an audio file to XenForo,” Moon wrote. “Elsewhere, he was able to load this webpage (probably as an inline frame), causing random users to make automated requests and send their authentication cookies off-site, so that the attacker could use it to gain access to their account. My admin account was compromised through this mechanism.”
The file uploaded to XenForo ends in .opus, an extension that’s used by certain audio formats. It was uploaded to XenForo directly and injected by a custom Rust-based chat program Moon wrote to make Kiwi Farms chats interact with sessions from XenForo.
The script caused targets to load /test-chat, which was a chat app Moon used for the site. Targets also loaded /help/, XenForo's help documentation, /avatar/avatar, to change avatars to the logo of another site, and admin.php?tools/phpinfo, in the event the target was an admin.
While the command to download all users’ data didn’t appear to succeed, the attacker was able to load the file, most likely as an iframe, that caused certain users to send the attacker their Kiwi Farms authentication cookies. This is what caused Moon’s admin account to become compromised.
It sounds to me as if this was a precisely targeted attack using the custom architecture that the site owner had set up to enable cross-platform integration.
Edited by Fighteer on Sep 20th 2022 at 8:48:59 AM
"It's Occam's Shuriken! If the answer is elusive, never rule out ninjas!"
Looks like Kill Net's forced to stop further hacking ops in Japan and beyond since they're getting into financial heat.
https://www.cbc.ca/news/canada/nova-scotia/inside-turmoil-sobeys-ransomware-attack-1.6650636
A cyberattack on Sobeys (A supermarket chain, mostly in Nova Scotia) has left the company in a bad shape, which was a ransomware attack.
Concerns include logistics and privacy (of customers).
https://www.asahi.com/ajw/articles/14785821
Amnesty International Canada says that they're targeted by pro-Chinese hackers.
Found this to be interested. A North Korean-trained hacker was detained by North Korean employees at the North Korean consulate in Vladivostok after Politsiya handed him over. He's been arrested while the hacker was evading them to reach out to a network of smugglers with links to the UNHCR.
He did his chops abroad, but he's been under surveillance by North Korean agents while doing his work. Likely one of the few blocks that led him to decide to defect.
Edited by Ominae on Jan 7th 2023 at 8:31:58 AM
He really didn't think that plan out well.
Probably didn't plan out enough to consider the police.
Killnet’s conducting cyberattacks on NATO websites. Their telegram channel (closed) is asking for crypto to finance more attacks.
Anonymous targeted the Japan Atomic Energy Agency, Japan Atomic Power Co. and the Atomic Energy Society of Japan. There's a list released by Anonymous that included TEPCO, the Ministry of Economy, Trade and Industry and the Liberal Democratic Party.
https://mainichi.jp/english/articles/20231129/p2g/00m/0na/016000c
Tokyo mentions that JAXA got hit in a cyber attack.
Mobile phone provider Kyivstar reported that someone's attacking their network. They suspected pro-Russian hackers.
Vice News has a video documentary on the origins of Anonymous.
Interesting to watch. Has some stories on how it came to be.
I-soon leaks mention that the company (in China) was subcontracted for the Chinese government (including MSS and Public Security police)
Ars Technica: Kiwi Farms has been breached; assume passwords and emails have been leaked
A sophisticated attack compromised user data on Kiwi Farms, a notorious online haven for hate groups. The attack vector was a malicious web page that was snuck in as an audio file that browsers were tricked into loading. This web page hijacked user sessions, allowing the attacker to bypass multi-factor authentication and issue server commands to transmit usernames, passwords, and IP addresses. The owner's admin account was also compromised in this way.
Irony is king here since Kiwi Farms routinely doxes other users with assertions that they "should have protected themselves better". Disclosure: Its members hate TV Tropes and periodically attack us in various ways.
Edited by Fighteer on Sep 19th 2022 at 3:39:10 PM
"It's Occam's Shuriken! If the answer is elusive, never rule out ninjas!"