Probably should've invested in better security instead of trying to chase tech trends like NFTs.
this post was submitted on 19 Jun 2023
3 points (100.0% liked)
Asklemmy
43535 readers
1969 users here now
A loosely moderated place to ask open-ended questions
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- !lemmy411@lemmy.ca: a community for finding communities
~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
founded 5 years ago
MODERATORS
You mean the 100th award I could buy was starting to be overkill? /s
Thanks for the gold kind stranger! 🤮
Thanks for the puke kind strager
Thanks for the thanks thanks thanks.
May I gift you a Guilded Reddit Gold NFT Snoo Platinum Anniversary edition for only 50 USD?
@Phoeniqz If Reddit is only announcing the hack now then that is very likely going to be a legal problem in a number of US jurisdictions, not to mention EU and others.
No website is invulnerable. Since we know from Reddit's godawful official app they don't do development very well, no doubt the website also has vulnerable holes.
If you think this will change anything at Reddit, think again.
Reddit will not pay them or meet their demands. If they do reverse any of their API changes, it won't be because of this. Businesses can't been seen to be caving to ransomware groups and rightly so, as it just encourages more of these types of attacks. ALPHV is 100% trying to cash in on the current resentment towards Reddit and it shows.
We also don't know what exactly has been accessed, as neither the group nor Reddit will confirm beyond Reddit stating that no production systems or user data was accessed. It could be 80GB of cat GIFs for all we know - I'm going to need more evidence that they have something big than a screenshot of the attacker saying "trust me bro".
Great. Fuck em and if they leak it EU citizens can sue the shit out of them :)
No user data was accessed according to Reddit.
according to Reddit
A super trustworthy source as we all know.
See, there is the problem, "according to reddit" they probably don't even know themselves currently. I don't believe them anyway.
They can 100% know what was accessed and what wasn’t. This didn’t just happen, it happened in February and their SOC team or an external company would have conducted a full sweep as they’re legally required to disclose what was breached in many of the territories they operate in, which they did four days after the incident took place. I know it’s on trend to hate Reddit right now, but it’s not some one man operation running on a dusty old server in a garage, it’s something like the 20th most visited website on the entire internet, and that comes with certain legal obligations. They know what they’re doing and clearly take this kind of thing seriously.
You don’t have to believe them, but there’s no proof that any user data was breached and they seem to have followed the proper protocols so far. Unless anything else comes out, I’m inclined to believe that they’re telling the truth, or at least not lying.
Sucks that they lumped API changes into their demands. This is going to make good-faith protestors look bad.
Crackpot idea: it's a false flag operation by reddit admins trying to sour protest support
Hopefully they publish the data so we can add to the fediverse
The article says, the data supposedly contains information about Reddit's tracking system. I don't think we want that in the FediVerse