Too Many Message Boards General Topics News and Current Affairs v
Was 4Chan really hacked?

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Threaded Mode
Was 4Chan really hacked?
Oh_hunnihunni Offline
Undiplomatic Left Wing Nut Job
**************
Posts: 10,577
Threads: 131
Joined: Feb 2020
Reputation: 193
#1
Tongue  23-05-2025, 07:41 AM
Did this actually happen? Is the sane world actually fighting back?  Big Grin

https://www.instagram.com/reel/DIygAMfxu..._copy_link

Thread: Was 4Chan really hacked?
Find
Reply
king1 Online
Administrator
*******
Posts: 4,615
Threads: 253
Joined: Oct 2021
Reputation: 182
#2
23-05-2025, 08:41 AM
those posts look like there from abou 4 weeks back, surely it would have been on MSM if that was the case
This world would be a perfect place if it wasn't for the people.
Sharesies | Buy Crypto | Surfshark VPN | Cloud Backup

Thread: Was 4Chan really hacked?
Find
Reply
zqwerty Offline
Maestro
*********
Posts: 2,281
Threads: 233
Joined: Oct 2022
Reputation: 56
#3
23-05-2025, 10:31 AM
I knew there were rumours that they had been hacked a couple of weeks ago.
It's not the least charm of a theory that it is refutable. The hundred-times-refuted theory of "free will" owes its persistence to this charm alone; some one is always appearing who feels himself strong enough to refute it - Friedrich Nietzsche

Thread: Was 4Chan really hacked?
Find
Reply
king1 Online
Administrator
*******
Posts: 4,615
Threads: 253
Joined: Oct 2021
Reputation: 182
#4
23-05-2025, 10:41 AM
This seems like some reasonably specific details 

Quote:Answer: In brief, a splinter site from 4chan called Soyjak Party was hacked hacked 4chan via a method that wasn't social engineering (confirmed by the guy who leaked the source code). All the site staff including moderators, admins and "janitors" emails were leaked and they are being doxed as I type. 4chan is currently down because between the source code being leaked and a major security vulnerability being exploited, they have to keep it down or else it will just happen again.
Soyjak Party is the remnants of a board called /qa/, which was originally a place to discuss more site specific topics but it eventually evolved/devolved in to a Soyjak factory with a very distinct culture. They raided /lgbt/ back in 2021 I believe and the moderators permanently locked the board in response, not realizing it's a better option to keep a chaotic element contained in a place you have control over.
Edit: I forgot to mention things that had been leaked: the aforementioned staff emails, a private board for staff discussion, a view of the moderation tools which confirms that being banned will have two reasons, one that you will see and one that only staff will see, and the source code. The source code reveals that 4chan aggressively attempts to fingerprint your browser. One thing that has not and apparently will not be leaked is the info on users who pay for 4chan pass, as the hacker says it was "just for fun."
Edit 2: Just found a post from the guy who did it which says:
"Contrary to popular belief, it was not SQL injection.
The exploit is such:
4chan allows uploading PDF to certain boards (/gd/, /po/, /qst/, /sci/, /tg/)
They neglected to verify that the uploaded file is actually a PDF file. As such, PostScript files, containing PostScript drawing
commands, can be uploaded.
Said PostScript file will be passed into Ghostscript to generate a thumbnail image.
The version of Ghostscript that 4chan uses is from 2012, so it is trivial to exploit.
From there, we exploit a mistaken suid binary to elevate to the global user."
He also reaffirms that he didn't even bother looking at user data while he had access, so no passholder leaks.
https://www.reddit.com/r/OutOfTheLoop/co...and_going/
This world would be a perfect place if it wasn't for the people.
Sharesies | Buy Crypto | Surfshark VPN | Cloud Backup

Thread: Was 4Chan really hacked?
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)