HackerTrans
TopNewTrendsCommentsPastAskShowJobs

spirovskib

no profile record

Submissions

An exposed .git folder let us dox a phishing campaign

64 points·by spirovskib·قبل 8 أشهر·21 comments

comments

spirovskib
·قبل 8 أشهر·discuss
They probably did. But it's a volunteer effort, we all contrinbute as much each individual's time permits.
spirovskib
·قبل 8 أشهر·discuss
Thanks for the kind words. We discussed whether to pull the data. We didn't for two reasons: 1. It's not trivial to process that data safely, and all the people in the server are volunteers that pitch in as much as they can. It won't be fair to burden them more. 2. The bots were posting to what appeared to be private or moderated channels. We didn't find an easy way in. Maybe there was a way in, but see item 1 above. So we went with "nuke it from orbit"