Posted on 07/06/2021 4:04:10 PM PDT by Openurmind
Newly launched social site GETTR suffered a data breach after a hacker claimed to use an unsecured API to scrape the private information of almost 90,000 members and then shared the data on a hacking forum.
GETTR is a new pro-Trump social media platform created by former Trump advisor Jason Miller as an alternative to Twitter.
As first seen by Alon Gal, co-founder and CTO of cybersecurity firm Hudson Rock, a group of hackers found an unsecured application programming interface (API) that allowed them to scrape the data for 87,973 GETTR members.
After compiling the information, the data was published to a well-known hacking forum commonly used to share databases stolen during data breaches...
What should GETTR users do? More and Images at site...
I think this was a sting operation by Trump.
If Vlad Putin is to be held accountable for the “Russian” hackers who are using ransomware then Joe Biden needs to answer for this un-American crime. Hey Joe, where are you in getting out in front of this problem of cybersecurity???
Is Hudson Rock a Rock Hudson fan boy club?
Not the best start
As I observed, this was a honey trap site, GETTR (Get Trump Republicans), and now it is clearly the case. From early observations, the site was hosted on AWS and had Google privacy and terms linked on its home page. No surprise data is now shared publicly.
Check your employees
A sting operation by Trump? How so since he said he had nothing to do with the site, was not on it, and did not plan to be on it.
I changed my password, just in case.
People need to stop falling for these. I had hoped people learned their lesson from Parler, but I guess not. At the very least people should register with throwaway email accounts and do basic OPSEC.
The best way to think about this is there’s only one lifestyle available to the anti-Trumpers and the anti-Americans.
Cheating and lying.
What’s wrong with using GAB? It works and it’s not tied to any of the big IT companies so they can’t be shut down.
Not good. Any platform challenging the mainstream social media needs to harden the endpoints. They will be a target.
Some people never learn.
Yeah I did not try to get an account on GETTR. Smells to fishy to me.
It’s funny how they use a word like scraped to mean made a copy of.
The endpoint where they data was copied was inside the building.
General Flynn (verified), just joined GETTR today.
Absolutely not by Trump. He came right out and said he didn’t want to have anything to do with it. The posts that were shown fro Trump supporting it were from fake accounts.
you sure did, and I was right behind you. How convenient right? Government has the info now don’t they? And it is too easy to blame hackers for it. Time to start holding these domains responsible for this stuff. Their own security was lacking or it would not have happened.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.