piemadd

Wordpress is the single, worst, CMS that is written and used by people who haven't the slightest understanding of security. WP does not come with security. Period. You have to buy plugins that only work on properly setup WP installations, of which few are. There is no security by default. 
 
I'm going to be blunt. I manage, or have previously managed WP sites, and when I couldn't get ahold of the owner of the site to do an emergency fix, I literately went to the mysql engine, and changed the email on the admin user, reset the password, did whatever I needed to do, and then copied the email back and restored the previous password.
 
Adding admin users, is absolutely trivial on wordpress, and the admin will never see them unless they're paying attention or have a security plugin that actually filters admins to ip addresses.
 

Disclaimer: Please do not talk about politics here! This post is meant to surround the data leak and the data leak only. It is again the rules of the forum to talk about politics!
 
I have removed any mentions of political anything from my quotes, so again, I am doing my best to keep politics out of this. That is why some quotes seem to start and end in the middle of sentences.
 
Summary
I do good with bullet points so here goes:
Parler is built on WordPress One of the WordPress plugins was vulnerable A Security researcher was able to use this plugin to create admin accounts on the platform These admin accounts were used to pull as much data from the platform as possible  
Quotes
Security researcher did the work. Now lets take a look into what they uncovered and how.
 
So it seems like said researcher believes there is criminal evidence on this platform for an event which shall not be named.
 
This is where it gets crazy. If you missed it, Parler failed to removed identifying metadata from the videos hosted on their platform, giving gps location data of each of the users. But wait, it gets worse... 
 
Oof is really all i can say here. All I can assume now is that there will be people who will match driver's licenses with geolocation data of images to forward any criminal activity onto the FBI and/or local law enforcement.
 
UPDATE: As @Blade of Grasspointed out, the archive pulled its data from a poorly created api. You can read about it in the tweet below:
 

 
Beyond the privacy implications, we really don't know what will happen to those whose data is leaked. There is no doubt that a database of compiled data will be up for sale on the dark web within weeks, or even days for that matter.

 
One final thing we can see here is that no data has ever been deleted from Parler, on top of their lax security. This is one of the reasons why the leakers could access so much information, even if it was deleted.
 
My thoughts
To put it simply, I am disappointed. I was not a user of Parler, but I do have to say if you market your platform towards a growing group of people not satisfied with their current social media options for one reason or another, you should do your best to make sure the security of your users is protected as much as possible. Who knows what will happen with the data, but we can for sure know that it is going to spread like wildfire.
 
Sources
Article 1: https://gizmodo.com/every-deleted-parler-post-many-with-users-location-dat-1846032466
Article 2: https://www.rt.com/usa/512152-parler-hacker-data-leak/

Honestly the way how Parler was run gave me the impression that the entire thing was a massive shitshow. The fact that they don't actually delete anything despite asking for sensitive info including state issued IDs just confirms it.

But I feel like PayPal has a slightly more valid reason to collect that kind of information, being a digital wallet and all. All the identity verification did on Parler was prove you were a 'real american' or whatever. 

Disclaimer: Please do not talk about politics here! This post is meant to surround the data leak and the data leak only. It is again the rules of the forum to talk about politics!
 
I have removed any mentions of political anything from my quotes, so again, I am doing my best to keep politics out of this. That is why some quotes seem to start and end in the middle of sentences.
 
Summary
I do good with bullet points so here goes:
Parler is built on WordPress One of the WordPress plugins was vulnerable A Security researcher was able to use this plugin to create admin accounts on the platform These admin accounts were used to pull as much data from the platform as possible  
Quotes
Security researcher did the work. Now lets take a look into what they uncovered and how.
 
So it seems like said researcher believes there is criminal evidence on this platform for an event which shall not be named.
 
This is where it gets crazy. If you missed it, Parler failed to removed identifying metadata from the videos hosted on their platform, giving gps location data of each of the users. But wait, it gets worse... 
 
Oof is really all i can say here. All I can assume now is that there will be people who will match driver's licenses with geolocation data of images to forward any criminal activity onto the FBI and/or local law enforcement.
 
UPDATE: As @Blade of Grasspointed out, the archive pulled its data from a poorly created api. You can read about it in the tweet below:
 

 
Beyond the privacy implications, we really don't know what will happen to those whose data is leaked. There is no doubt that a database of compiled data will be up for sale on the dark web within weeks, or even days for that matter.

 
One final thing we can see here is that no data has ever been deleted from Parler, on top of their lax security. This is one of the reasons why the leakers could access so much information, even if it was deleted.
 
My thoughts
To put it simply, I am disappointed. I was not a user of Parler, but I do have to say if you market your platform towards a growing group of people not satisfied with their current social media options for one reason or another, you should do your best to make sure the security of your users is protected as much as possible. Who knows what will happen with the data, but we can for sure know that it is going to spread like wildfire.
 
Sources
Article 1: https://gizmodo.com/every-deleted-parler-post-many-with-users-location-dat-1846032466
Article 2: https://www.rt.com/usa/512152-parler-hacker-data-leak/

This whole thing seems like a shitshow, but man, this is honestly the worst part:
We need to hold companies more accountable when it comes to privacy, deleted means deleted. If I delete an account, my data should be completely deleted or altered so that it is no longer personally identifiable, otherwise what is even the point of deleting?

Disclaimer: Please do not talk about politics here! This post is meant to surround the data leak and the data leak only. It is again the rules of the forum to talk about politics!
 
I have removed any mentions of political anything from my quotes, so again, I am doing my best to keep politics out of this. That is why some quotes seem to start and end in the middle of sentences.
 
Summary
I do good with bullet points so here goes:
Parler is built on WordPress One of the WordPress plugins was vulnerable A Security researcher was able to use this plugin to create admin accounts on the platform These admin accounts were used to pull as much data from the platform as possible  
Quotes
Security researcher did the work. Now lets take a look into what they uncovered and how.
 
So it seems like said researcher believes there is criminal evidence on this platform for an event which shall not be named.
 
This is where it gets crazy. If you missed it, Parler failed to removed identifying metadata from the videos hosted on their platform, giving gps location data of each of the users. But wait, it gets worse... 
 
Oof is really all i can say here. All I can assume now is that there will be people who will match driver's licenses with geolocation data of images to forward any criminal activity onto the FBI and/or local law enforcement.
 
UPDATE: As @Blade of Grasspointed out, the archive pulled its data from a poorly created api. You can read about it in the tweet below:
 

 
Beyond the privacy implications, we really don't know what will happen to those whose data is leaked. There is no doubt that a database of compiled data will be up for sale on the dark web within weeks, or even days for that matter.

 
One final thing we can see here is that no data has ever been deleted from Parler, on top of their lax security. This is one of the reasons why the leakers could access so much information, even if it was deleted.
 
My thoughts
To put it simply, I am disappointed. I was not a user of Parler, but I do have to say if you market your platform towards a growing group of people not satisfied with their current social media options for one reason or another, you should do your best to make sure the security of your users is protected as much as possible. Who knows what will happen with the data, but we can for sure know that it is going to spread like wildfire.
 
Sources
Article 1: https://gizmodo.com/every-deleted-parler-post-many-with-users-location-dat-1846032466
Article 2: https://www.rt.com/usa/512152-parler-hacker-data-leak/

Disclaimer: Please do not talk about politics here! This post is meant to surround the data leak and the data leak only. It is again the rules of the forum to talk about politics!
 
I have removed any mentions of political anything from my quotes, so again, I am doing my best to keep politics out of this. That is why some quotes seem to start and end in the middle of sentences.
 
Summary
I do good with bullet points so here goes:
Parler is built on WordPress One of the WordPress plugins was vulnerable A Security researcher was able to use this plugin to create admin accounts on the platform These admin accounts were used to pull as much data from the platform as possible  
Quotes
Security researcher did the work. Now lets take a look into what they uncovered and how.
 
So it seems like said researcher believes there is criminal evidence on this platform for an event which shall not be named.
 
This is where it gets crazy. If you missed it, Parler failed to removed identifying metadata from the videos hosted on their platform, giving gps location data of each of the users. But wait, it gets worse... 
 
Oof is really all i can say here. All I can assume now is that there will be people who will match driver's licenses with geolocation data of images to forward any criminal activity onto the FBI and/or local law enforcement.
 
UPDATE: As @Blade of Grasspointed out, the archive pulled its data from a poorly created api. You can read about it in the tweet below:
 

 
Beyond the privacy implications, we really don't know what will happen to those whose data is leaked. There is no doubt that a database of compiled data will be up for sale on the dark web within weeks, or even days for that matter.

 
One final thing we can see here is that no data has ever been deleted from Parler, on top of their lax security. This is one of the reasons why the leakers could access so much information, even if it was deleted.
 
My thoughts
To put it simply, I am disappointed. I was not a user of Parler, but I do have to say if you market your platform towards a growing group of people not satisfied with their current social media options for one reason or another, you should do your best to make sure the security of your users is protected as much as possible. Who knows what will happen with the data, but we can for sure know that it is going to spread like wildfire.
 
Sources
Article 1: https://gizmodo.com/every-deleted-parler-post-many-with-users-location-dat-1846032466
Article 2: https://www.rt.com/usa/512152-parler-hacker-data-leak/

This is why patching your stuff is important. It worries me how many important systems are probably still running Server 2008/R2 without ESU licensing.

Disclaimer: Please do not talk about politics here! This post is meant to surround the data leak and the data leak only. It is again the rules of the forum to talk about politics!
 
I have removed any mentions of political anything from my quotes, so again, I am doing my best to keep politics out of this. That is why some quotes seem to start and end in the middle of sentences.
 
Summary
I do good with bullet points so here goes:
Parler is built on WordPress One of the WordPress plugins was vulnerable A Security researcher was able to use this plugin to create admin accounts on the platform These admin accounts were used to pull as much data from the platform as possible  
Quotes
Security researcher did the work. Now lets take a look into what they uncovered and how.
 
So it seems like said researcher believes there is criminal evidence on this platform for an event which shall not be named.
 
This is where it gets crazy. If you missed it, Parler failed to removed identifying metadata from the videos hosted on their platform, giving gps location data of each of the users. But wait, it gets worse... 
 
Oof is really all i can say here. All I can assume now is that there will be people who will match driver's licenses with geolocation data of images to forward any criminal activity onto the FBI and/or local law enforcement.
 
UPDATE: As @Blade of Grasspointed out, the archive pulled its data from a poorly created api. You can read about it in the tweet below:
 

 
Beyond the privacy implications, we really don't know what will happen to those whose data is leaked. There is no doubt that a database of compiled data will be up for sale on the dark web within weeks, or even days for that matter.

 
One final thing we can see here is that no data has ever been deleted from Parler, on top of their lax security. This is one of the reasons why the leakers could access so much information, even if it was deleted.
 
My thoughts
To put it simply, I am disappointed. I was not a user of Parler, but I do have to say if you market your platform towards a growing group of people not satisfied with their current social media options for one reason or another, you should do your best to make sure the security of your users is protected as much as possible. Who knows what will happen with the data, but we can for sure know that it is going to spread like wildfire.
 
Sources
Article 1: https://gizmodo.com/every-deleted-parler-post-many-with-users-location-dat-1846032466
Article 2: https://www.rt.com/usa/512152-parler-hacker-data-leak/

The fact that thousands of Americans uploaded images of the front and back of their state driver's licenses just to become 'verified citizens' on a social media app is the biggest indication I've seen that we need better privacy and technological literacy education. 

Click bait a little is a big understatement. If someone has that level of physical access you have bigger problems. If they managed to get all that information and access to your stuff in the first place your completely screwed anyway no matter what security you have. 

ooh b550 steel legend. I have a b450, but im not sure if i should upgrade to b550 or go all out with x570.

We're currently using the oembed endpoint (https://repl.it/data/oembed), and taking whatever it says we should be using for the embeds. We could change it to a custom URL rewriter if necessary, but I'd prefer for the oembed endpoint to give the appropriate output format instead.

open ryzen master and monitor the wattage of the cpu while your either doing benchmarking or some other task, thats really the easiest way to tell if its getting throttled by not getting enough power.

if it feels like its locking at 150w or some other wattage then you will know.

He did, and then left

I feel like its crappy of Nvidia to do this, but they do have a point. 

Hardware unboxed is basing their performance numbers pretty much only off of Rasterization. The thing is, while the improvements they have made there are kinda eh, we're going into a new era of everything is ray traced, down to linus' ball hairs the particles of sand in MC. Technologies such as DLSS and RT allow for us to start looking into what games in 2021 and 2022 will be using, most of which will probably be focused on ray tracing. This only makes sense, as better lighting = moar better. 

This was 100% a sleep deprived Piero ramble but I hope you get my point.

We all know Ryan Vickers was on top. I miss that mf :,(

We all know Ryan Vickers was on top. I miss that mf :,(