good god
― shirley summistake (s1ocki), Thursday, 18 November 2010 19:41 (thirteen years ago) link
making mashed potatoes for 2, cleaning their credit cards, wow, these must be the most efficient, productive, successful people out there and not desperate shut-ins
― shirley summistake (s1ocki), Thursday, 18 November 2010 19:42 (thirteen years ago) link
lifehacker is so funny
― call all destroyer, Thursday, 18 November 2010 19:49 (thirteen years ago) link
there is one really useful article for every five instances of ocd insanity
Next take the eraser (we prefer Pink Pearl erasers, but the one on the end of a pencil will do just fine) and gently erase/rub the magnetic strip on the back. It will remove any gunk that's built up over time.
jesus
fucking
christ
― goole, Thursday, 18 November 2010 19:51 (thirteen years ago) link
pageviews on the mashed potatoes article: 13,433
― markers, Thursday, 18 November 2010 19:54 (thirteen years ago) link
will it? will it do just fine? i don't have to run out and pick up a three-pack of Pink Pearls, you're letting that one go? or should i spring for the bulk box of 36, because the offgassing of retail plastic packaging causes the rubber to age inconsistently? huh? can i get a fucking answer over here?
― goole, Thursday, 18 November 2010 19:55 (thirteen years ago) link
if you use the eraser on a dixon ticongeroga itll irreparably destroy your credit score
― markers, Thursday, 18 November 2010 19:57 (thirteen years ago) link
gonna try the credit card cleaning trick on my library card, will report back
― mc souleye (brownie), Thursday, 18 November 2010 20:05 (thirteen years ago) link
Haha, I thought that was going to be like "wiping out your debt."
― http://tinyurl.com/koalalala (Pleasant Plains), Thursday, 18 November 2010 20:20 (thirteen years ago) link
mashed potatoes for two could so easily be a jezebel article
― A B C, Thursday, 18 November 2010 21:39 (thirteen years ago) link
you make it and reserve 1.85 servings for yourself and .15 for your cat, then you f5 jezebel and read a daily mail repost about how men are repulsed by fatasses (with two sentences of "my third-wave ladies can you believe this shit?" commentary) thus inciting a fit of self-loathing which perpetuates the cycle of #groupthink
― A B C, Thursday, 18 November 2010 21:41 (thirteen years ago) link
btw i am totally going to try an erasing on the mag strip of my debit card--that shit is fucked up
― call all destroyer, Thursday, 18 November 2010 21:48 (thirteen years ago) link
don't try it on your library card unless you want the RIDE OF YOUR LIFE
― mc souleye (brownie), Thursday, 18 November 2010 21:52 (thirteen years ago) link
lol
― call all destroyer, Thursday, 18 November 2010 21:53 (thirteen years ago) link
http://gawker.com/5712646/advisory-notice-no-action-required
― markers, Sunday, 12 December 2010 22:01 (thirteen years ago) link
max have you been compromised??!
― tickle me imo (s1ocki), Sunday, 12 December 2010 22:07 (thirteen years ago) link
FYI: That post linking to a torrent of our source code was not written by me. We've been hacked.41 minutes ago via webRetweeted by 22 people
AdrianchenAdrian Chen
― markers, Sunday, 12 December 2010 22:09 (thirteen years ago) link
http://www.mediaite.com/online/worse-than-previously-thought-gawker-content-management-system-hacked/
― markers, Sunday, 12 December 2010 22:11 (thirteen years ago) link
max PLEASE REPORT IN so we know you're ok
― tickle me imo (s1ocki), Sunday, 12 December 2010 22:12 (thirteen years ago) link
have we heard whether or not gawker has activated reston 5
― literally the worst thing that ever happened on this planet (reddening), Sunday, 12 December 2010 22:20 (thirteen years ago) link
^^ post/display name
― markers, Sunday, 12 December 2010 22:23 (thirteen years ago) link
~~~THIS IS ANONYMOUS POSTING FROM MAXS HACKED ILX ACCT~~~
SLOCKI UR NEXT~~~~GET READY 4 SOME REAL HACKER ISH
*DONS GUY FAWKES MASK*
― max, Sunday, 12 December 2010 23:03 (thirteen years ago) link
plz dont go after slocki he's just a canadian who got mixed up with the wrong sort of blogger
― kanellos (gbx), Sunday, 12 December 2010 23:08 (thirteen years ago) link
Due to the leak of the GANJA framework from within our company
GANJA
― deej me how to whiney (dayo), Monday, 13 December 2010 00:11 (thirteen years ago) link
This story is somewhat entertaining. It’s also a legendary clusterfuck.
BTW: Gawker still hasn’t notified users. WTF.
― Allen (etaeoe), Monday, 13 December 2010 05:21 (thirteen years ago) link
The discussion on Hacker News that's a worthwhile read:
http://news.ycombinator.com/item?id=1998642
Some choice quotes:
This is serious. I just checked out the torrent with the text file of the 200,000 cracked passwords. I searched for @me.com account and logged into someone's apple account. It was possible for me to order stuff via their account. I quickly emailed the guy to let him know to change his password. Gawker needs to take responsibility of this situation and email everyone in their database.
Edit 2: Wow: I know a lot of people on this list. I'm letting them know, and recommend that others scan on behalf of friends and family as well. I've been told that there has not been active communication; wish gawker would confirm either way.
A quick search shows staff email addresses at techcrunch, apple, microsoft, google, goldman sachs, etc.
All the usernames and passwords for users with ✧@lifehac✧✧✧.c✧✧, @gawker.com, etc.} email addresses in the torrent (plaintext, not hashed). The torrent claims Nick Denton’s password was an 8-character sequence of even numbers, and that he used it everywhere. (Edit in reply: The hackers used this on e.g. his Twitter account IIRC so it wasn’t truncated to 8 characters.) Some of them are even '11223344' or a substring of the author’s username!
― Allen (etaeoe), Monday, 13 December 2010 05:24 (thirteen years ago) link
obv this will be seen more seriously than a simple ddos attack & might lead to some prosecution down the road
nice for max to have a night off, tho
― ad hom alone (J0rdan S.), Monday, 13 December 2010 05:26 (thirteen years ago) link
For Gawker? Or “Gnosis”?
I suspect it won’t be “Gnosis” since it’s evident from this dump that Gawker’s engineering and I.T. department is shockingly amateurish (e.g. using DES hashes and running everything off of an individual DB schema). Is Gawker liable for their incompetence and bizarrely deficient security practices?
We protect our data with UNIX Standard hash encryption method crypt(3), which is absolutely 100% impossible to crack.
LOLZ. Goodnight.
― Allen (etaeoe), Monday, 13 December 2010 05:43 (thirteen years ago) link
FYI: http://undertow.jedsmith.org/gawker/
― Allen (etaeoe), Monday, 13 December 2010 05:48 (thirteen years ago) link
Is Gawker liable for their incompetence and bizarrely deficient security practices?
maybe? i don't know the law about this kinda thing, but i suspect if a bank leaves $100,000 lying out on its tables, it's still not okay for you to steal it
― ad hom alone (J0rdan S.), Monday, 13 December 2010 05:51 (thirteen years ago) link
http://pastebin.com/9rRmf6W5
― vladimir pootawn (am0n), Monday, 13 December 2010 05:53 (thirteen years ago) link
I think the real mistake was in creating a gawker account
― deej me how to whiney (dayo), Monday, 13 December 2010 05:53 (thirteen years ago) link
lol good luck w/ the "prosecution"
― vladimir pootawn (am0n), Monday, 13 December 2010 05:55 (thirteen years ago) link
we need to find max
― tickle me imo (s1ocki), Monday, 13 December 2010 06:00 (thirteen years ago) link
He's probably out posting tweets about acai berries.
― James Mitchell, Monday, 13 December 2010 10:12 (thirteen years ago) link
not really supposed to talk abt this but uh wed notified users by 3:30 pm yesterday, before the torrent was even released
― max, Monday, 13 December 2010 13:14 (thirteen years ago) link
My e-mail was included and I wasn't notified. I also haven't heard anyone claim that they've been contacted by Gawker. However, this morning I received an e-mail from hint.io (???) informing me about the hack and recommending that I change my password.
BTW: Supposedly, there's going to be another dump this afternoon.
― Allen (etaeoe), Monday, 13 December 2010 13:28 (thirteen years ago) link
http://25.media.tumblr.com/tumblr_ldd2j0jWOT1qdyc51o1_500.png
― literally the worst thing that ever happened on this planet (reddening), Monday, 13 December 2010 13:30 (thirteen years ago) link
From Felix Salmon:
Update: Gawker Media now has a FAQ up, which stops short of an apology. What Gawker didn’t do — but what the good people at Hint did do — is email everybody whose email and password were made public, to inform them of that fact. “In situations like this, time is of the essence, which is why we were surprised & shocked to find that Gawker Media hadn’t taken the initiative to notify you of this privacy breach immediately,” they wrote. I’m with them: Gawker should have done what Hint did. But, thankfully, now they don’t need to. And if you haven’t received an email from Hint, there’s a good chance that your email and password have not been made public.
http://blogs.reuters.com/felix-salmon/2010/12/13/gawker-media-gets-hacked/
― Allen (etaeoe), Monday, 13 December 2010 13:32 (thirteen years ago) link
I hacked my mates facebook account so I could right stuff in his status. His password was his surname. When he discovered that someone had hacked it he changed his password.... to password. When his staus's started changing again he just started commenting on them saying "WHO ARE YOU!!!" instead of changing his password again because he thought it was impossible someone could have guessed it twice.
― cozen, Monday, 13 December 2010 14:18 (thirteen years ago) link
I think it's pretty obvious that Gawker got hardpwned because of some pretty egregious security practices on the part of administrators who should know better, but if you leave your house key under the doormat, people are still criminals if they use them to come in and steal your shit.
That said, Gawker Media is still waaaay understating the risk here, and should be contacting all users via email. It's true that there was some level of obfuscation on user email addresses/passwords, but someone had access to the full database, the source code, and root access on the server. There's nothing in that database that's completely safe.
― mh, Monday, 13 December 2010 14:56 (thirteen years ago) link
XD
― vladimir pootawn (am0n), Monday, 13 December 2010 15:16 (thirteen years ago) link
i think max should write each user individually
― tickle me imo (s1ocki), Monday, 13 December 2010 15:26 (thirteen years ago) link
For that personal touch, yes.
Man, that reminds me of some guy we interviewed for a job at work who sent a handwritten thank you card to each person who interviewed him. He seemed like a nice dude, but was way desperate and had no ability to answer technical questions in an interview. I left that damn card unopened on my desk for two weeks because I didn't need a guilt complex.
― mh, Monday, 13 December 2010 15:29 (thirteen years ago) link
^^^are you UK or US? this is apparently more of a thing in the US but it bO_Oggled my mind when they were discussing it in the dole thread
― cozen, Monday, 13 December 2010 16:20 (thirteen years ago) link
http://www.zarcrom.com/users/yeartorem/awards/gawking.jpg
― buzza, Monday, 13 December 2010 17:08 (thirteen years ago) link
yeah why the hell did i make a gawker account
― k3vin k., Monday, 13 December 2010 17:26 (thirteen years ago) link
http://rlv.zcache.com/gawk_all_you_want_tshirt-p235327177861775555qiuw_400.jpg
― vladimir pootawn (am0n), Monday, 13 December 2010 17:30 (thirteen years ago) link
I got what I thought was a spam email abt this. What do I need to do?
Is it the reason my laptop was afflicted w/ System Tool virus for 4 hours Saturday?
― kind of shrill and very self-righteous (Dr Morbius), Monday, 13 December 2010 17:39 (thirteen years ago) link