That is… brilliant! I love it!

Could’ve at least say thank you…

Yes.

Because apparently, he moved it there… and doesn’t know what /dev/null is…

And if really want quality recovery, /dev/urandom. Might take a bit longer, but it’s worth the wait 👌.

/dev/void 🤔

Patience is key.

Rotating the keys was my first thought as well, I just thought they were busy with something else and couldn’t get this done at the time. Though, yes, I would make it my no.1 priority as well and drop everything else. But I guess they learned their lesson now. When you’re that well known, you’re a huge target and you’ve also managed to piss off some of the world’s largest corps… you better make security your no.1 priority.

Script kiddies act like that only when bragging online. Put them in a real world scenario and most of them don’t know what to do and just bail. The might get into the system, but then realize what they’ve done and start unplugging things from outlets. And script kiddies just brag around and leave notes like “you’ve been hacked loozer”, or something similar. This is a well thought of response, this has nothing to do with bragging or a challenge, this was intentional.

That is true, though it would be pointless to look for it in /dev/null.

It’s still an exploit if he/she didn’t rightfully have access to those parts of IA.

And what was written in that screenshot doesn’t say “script kiddie” to me, it says that this person knew full well what he/she was doing. Script kiddies lack confidence. That is not what I’m getting from the screenshot.

It may also be a plan that was in the making for a long time, but the party was just waiting for an easy opportunity to make a good hit on IA.

Most people into security knew they were leaked a few weeks ago and everyone (including myself) thought that, yes, they are probably still working, but they’re understaffed, so they’ll probably get to it, but it’ll take a few more weeks. It never occured to me that anyone in their right mind would deliberately do harm to IA. There’s honor, even amongst thieves. I know for certain at least one group looked at those keys and didn’t do anything. Why bite the very thing that you rely on… there is no point. All of us use IA for various things, including long gone packages and source code. It would be dumb to actually do this. Unless there is a financial incentive, of course… I’m sorry, but that’s the only thing that makes sense in my mind.

Maybe that was the only thing that was easily exploitable… or maybe it’s a warning… or maybe not enough pay for something more sinister… or maybe all of the above.

Buying stuff is a momentary fix for what’s truly bothering you.

Some sort of trip-hop most probably… with some breakbeat elements.

I am an engineer, a father, IT staff for the family, somewhat of a coder, house maintenance person/engineer, sowing machine operator, glue operator, pest exterminator, AC maintenance staff for the household, chef… 🤔… I probably missed a few.

Wow, quite a story…

Have a a lot similar ones, also related to music, but I was already into Psytrance, so they’re all related to Psytrance, lol 😁. It was sort of like the vibe back then, everyone found out things on their own, either through digging around or stumbling intentionally or unintentionally.

I know most Russians do… I don’t (not Russian BTW), I write them in English even if I currently have no reason to suspect that anyone except locals will look at or use that code. I just believe in people having less trouble, in general, things to be as readable as possible and easy to understand as possible. I avoid writing paragraphs though and only do it if there is a very good reason to do so.

And why is this marked as NSFW 🤨?

There are other ways to point out a problem. What this person did could have been done as a POC, discussed privately with IA and published publicly later on, when the problem was patched.

This was deliberate and probably paid for.

Because no one has offered any money regarding that.

Yes, and IA was super prompt at patching that, because they have such a big team, who also get paid corporate wages and get all sorts of benefits. And, of course, all of them have nothing better to do… because maintaining that infrastructure and code is a piece of cake and is super easy.

Like keeping old versions of their software for one… or source code leaked or deleted for one reason or another… and other info of course.

I use it regularly to link to source files or packages long deleted, but I still use them for one thing or another.