Gawker Hacked by Gnosis, Site in Chaos (UPDATED)
A group calling themselves Gnosis have posted a torrent, which they claim includes all of Gawker Media's source code, along with the previously threatened list of commenter names, email addresses and passwords on The Pirate Bay.
The torrent of information currently has zero "seeders," making it impossible to download. For now. (UPDATE: The information is out. A summary of the entire hack is at the bottom of this post.) The group has also posted to Gawker.com under the name of the site's weekend writer Adrien Chen (who says he has no access to Gawker's blogging system), linking to the hacked information. The full hacked Gawker post and a statement of purpose from Gnosis below! Expect the site to go down altogether at some point as Gawker's tech people struggle to win back power.
The hacked post on Gawker, which uses Chen's byline, claims Gnosis is "not 4chan or anonymous," yet goes on to quote disparaging Gawker Media references to 4Chan, making a mess of any questions of allegiance. Still:
ADVISORY NOTICE (No action required):
We have discovered various copies of our source code available for download from HERE.
We ask you to NOT download this, as this WILL infringe our copyright.
On the one hand, please know that we at Gawker Media take your information VERY seriously, all user data is protected and looked after in accordance with our policy.
However, we do not believe our data has been compromised, so please relax on that front.
We protect our data with UNIX Standard hash encryption method crypt(3), which is absolutely 100% impossible to crack.
We follow the most stringent, industry standard, methods in order to ensure the integrity and safety of your data. We hope that despite the full disclosure of GANJA, we still hold our iron grip on our data.
So, here we are again with a monster release of ownage and data droppage.
Previous attacks against the target were mocked, so we came along and raised the bar a little.
Fuck you gawker, hows this for "script kids"?
Your empire has been compromised, Your servers, Your database's, Online accounts and source
code have all be ripped to shreds!
You wanted attention, well guess what, You've got it now!
- Database dump (1.3+ million rows), including cracked passwords.
- Source dump
- Upcoming redesign
- Read this for some background info and lots of juicy passwords
- List of gawker server kernel versions.
While we have already stated we are not 4chan or anonymous, these quotes amuse us:
The headeline of your post should be "Suck on This, 4Chan"
I like the call to make today Everybody Write About 4chan Day
Nick Denton Says Bring It On 4Chan, Right to My Home Address (After The Jump)
We Are Not Scared of 4chan Here at 210 Elizabeth St NY NY 10012
-- #Gnosis, where is your god now? --
More updates as they happen.
UPDATE, 5:44 p.m.: Now available widely, both downloadable in torrent form and online as a readme.txt file, is a huge amount of information stolen from Gawker Media by the Gnosis group. The file includes the user names, email addresses and passwords of Gawker commenters, writers, editors, photographers, business people and so on. As originally threatened, the information appears to come from the Gawker flagship site, Lifehacker and Gizmodo, with sites like Jezebel and Deadpsin spared, though that has not been confirmed. Additional information includes everything from chats to emails to Gawker's log-in for the Wall Street Journal website and beyond. Complex server information is also included amid the mess of text, which features threats, epithets, jokes and typos. At the end, Gnosis signs off with the following message:
You would think a site that likes to mock people, such as gawker, would have better security and actually have a clue what they are doing. But as we've proven ,those who think they are beyond our reach aren't as safe as they would like to think! We've not done yet, we have other targets in our sights, you will all soon realise that nothing is sacred on the internet, we can get to each and every one of you and expose your so called "security" and expose you for the faggots you are! Shouts to all the crew at #gnosis! Hello to everyone at 4chan and #operationpayback