@LinusTech Twitter Account Hacked

[guppy]

2 minutes ago, thedarkdad3 said:

 

 

Salty Much? In the end buddy I still have a career and I am successful. I'm not the one getting hacked.

What do you have against Linus? Like you said before, this is just one of the many times he's been hacked and it likely won't be the last. It's not like this is going to singlehandedly ruin his career or reputation. Chill

[Arty]

2 minutes ago, MellowCream said:

I'm aware this is what Linus says, however, Poodle says otherwise. 

however neither provided proof, and poodle saying they no longer are selling basically means they have nothing to sell. 

[caramelgeoff]

Domain Registrar: Godaddy.

 

I am assuming the hackers got Linus's information, called in and went through a tier 1 to get a password reset. They probably gathered a bunch of information from misc. leaks and was enough to get past an after hours tier 1 tech at godaddy.

 

Tech then resets password. Said hacker gets access to DNS panel, redirects mxrecord for linustechtips.com to his own mail server or a catchall, initiates a twitter password reset and bob is your uncle. The reason they probably only had access to the twitter is it may of been the only service they could hit not running 2FA.

 

"Hacking" these days is nothing more than ctrl + f on a bunch of leaks and playing mind games with some tier 1 support guys at companies. A little social awareness and you can pretty much do what you want.

[rm -rf]

3 minutes ago, guppy said:

What do you have against Linus? Like you said before, this is just one of the many times he's been hacked and it likely won't be the last. It's not like this is going to singlehandedly ruin his career or reputation. Chill

It could certainly hurt the reputation though.

Also, welcome to the forums.

[Stuff_]

4 minutes ago, thedarkdad3 said:

 

 

Salty Much? In the end buddy I still have a career and I am successful. I'm not the one getting hacked.

No, but you can very well get hacked. 

See Boogie. His hack was at fault of Verizon and social engineering. There was absolutely nothing that could have prevented than except an act of God.

[burnttoastnice]

2 minutes ago, MellowCream said:

I'm aware this is what Linus says, however, Poodle says otherwise. 

The last time there was a breach, all passwords were automatically reset and it was well-known.

This time was simply DNS, the proof being that people are still complaining on Linus's twitter that they can't access the site. DNS, by design, is slow to update as information has to pass through many servers. I'd say within the next hour everyone's back on LTT.

 

I have my suspicions about who this 'third party' is

[Stuff_]

4 minutes ago, MellowCream said:

I'm aware this is what Linus says, however, Poodle says otherwise. 

Why would they no longer wish to sell the DB if they actually had it? Basically Linus called their bluff, and thus far, they haven't done anything to prove their cards. If they really had it, and wanted to call Linus out on being a "fucking retard" then they would paste the DB somewhere, and simply not sell it.

 

[Sakkura]

14 minutes ago, Blade of Grass said:

Of course, anything can be cracked, it's just a matter of how hard and how long it will take. 

 

One-time pads cannot be cracked.

 

They're also completely ridiculous.

[givingtnt]

@LinusTech Will we ever know the involved 3rd party ?

What for knowing what kind of problems we might be dealing with if we are partnering with them ?

[rm -rf]

2 minutes ago, Stuff_ said:

No, but you can very well get hacked. 

See Boogie. His hack was at fault of Verizon and social engineering. There was absolutely nothing that could have prevented than except an act of God.

Even then, God is on MacOS, they probably couldn't have done anything.

[rm -rf]

2 minutes ago, givingtnt said:

@LinusTech Will we ever know the involved 3rd party ?

What for knowing what kind of problems we might be dealing with if we are partnering with them ?

Probably not, confidentially agreements and stuff.

[Arty]

1 minute ago, rm -rf said:

Even then, God is on MacOS, they probably couldn't have done anything.

Mac doesn't = impenetrable. 

[rm -rf]

1 minute ago, Arty said:

Mac doesn't = impenetrable. 

I wasn't suggesting that.

I was talking about incompatibilities.

[givingtnt]

1 minute ago, rm -rf said:

Probably not, confidentially agreements and stuff.

I think we have the right to know whatever compagnie is too lazy to protect a compagnie as big as lmg.

how about us ?

[burnttoastnice]

5 minutes ago, Sakkura said:

 

One-time pads cannot be cracked.

 

They're also completely ridiculous.

Thank you.

I am literally cringing at the amount of people here who don't understand the difference between hashing and encryption, claiming a hash can be cracked (which is true to some extent for md5 but requires excessive effort and computing power).

 

Rainbow tables != Cracking a hash (#inb4shutdown)

[givingtnt]

1 minute ago, burnttoastnice said:

Thank you.

I am literally cringing at the amount of people here who don't understand the difference between hashing and encryption, claiming a hash can be cracked (which is true to some extent for md5 but requires excessive effort and computing power).

 

Rainbow tables != Cracking a hash (#inb4shutdown)

@LinusTech techquicky much ?

[rm -rf]

2 minutes ago, givingtnt said:

I think we have the right to know whatever compagnie is too lazy to protect a compagnie as big as lmg.

how about us ?

We have the 'right' to, though we don't have the 'legal right' to.

[MellowCream]

2 minutes ago, givingtnt said:

I think we have the right to know whatever compagnie is too lazy to protect a compagnie as big as lmg.

how about us ?

GoDaddy is the registrar of the domain.  

 

[givingtnt]

1 minute ago, rm -rf said:

We have the 'right' to, though we don't have the 'legal right' to.

you sure ?
who knows it might be twitter ?
might be the companie who sold the domain to linustechtips

it could be anyone

[burnttoastnice]

2 minutes ago, MellowCream said:

GoDaddy is the registrar of the domain.  

 

Spoiler

I think it's

 

[givingtnt]

2 minutes ago, burnttoastnice said:

I think it's

could be

but if lmg is a client, then like anyone they don't have to hide that as a customer they have been compromised by them ?

 

unless they are on some kind of contract. wich I doubt

[Stuff_]

6 minutes ago, burnttoastnice said:

Thank you.

I am literally cringing at the amount of people here who don't understand the difference between hashing and encryption, claiming a hash can be cracked (which is true to some extent for md5 but requires excessive effort and computing power).

 

Rainbow tables != Cracking a hash (#inb4shutdown)

I mentioned this as well about a page ago, when replying to this silly man. 

54 minutes ago, thedarkdad3 said:

You realize encryption can be broken and deciphered.  Hell Let @LinusTech pay me and my firm $30,000k and we will do it within a month. I somehow doubt he wants to get rekt again. hahaha

 

[rm -rf]

3 minutes ago, burnttoastnice said:

  Hide contents

I think it's

 

For those who don't know what logo that is, it's CloudFlare

[caramelgeoff]

11 minutes ago, givingtnt said:

@LinusTech Will we ever know the involved 3rd party ?

What for knowing what kind of problems we might be dealing with if we are partnering with them ?

Linus claimed his registrar was hacked.. DNS lookup shows godaddy as the registrar. 

 

Godaddys authentication steps are usually pretty rock solid but I could see a tier 1 guy getting goofed up and getting social engineered'

[rm -rf]

2 minutes ago, givingtnt said:

could be

but if lmg is a client, then like anyone they don't have to hide that as a customer they have been compromised by them ?

 

unless they are on some kind of contract. wich I doubt

Why do you doubt they'd be in a contract?