HackerTrans
TopNewTrendsCommentsPastAskShowJobs

spirovskib

no profile record

Submissions

An exposed .git folder let us dox a phishing campaign

64 points·by spirovskib·8 miesięcy temu·21 comments

comments

spirovskib
·8 miesięcy temu·discuss
They probably did. But it's a volunteer effort, we all contrinbute as much each individual's time permits.
spirovskib
·8 miesięcy temu·discuss
Thanks for the kind words. We discussed whether to pull the data. We didn't for two reasons: 1. It's not trivial to process that data safely, and all the people in the server are volunteers that pitch in as much as they can. It won't be fair to burden them more. 2. The bots were posting to what appeared to be private or moderated channels. We didn't find an easy way in. Maybe there was a way in, but see item 1 above. So we went with "nuke it from orbit"