Japan’s top BBS 2ch.net is reeling after being hacked, with the credit cards and personal details of tens of thousands of users leaked and their anonymity in tatters, and posting disabled across swathes of the site.
Due to 2ch threads expiring in a matter of days or hours on the more active boards, a ¥300 a month premium membership was instituted to allow access to the archived material, requiring credit card details for payment.
Given the site’s pathetically obsolete technology it is sadly no surprise to learn that they apparently held all these details in unencrypted form on their own public-facing servers, allowing unknown hackers to make off with them and later post them on Tor.
The American company providing the “2ch Viewer” provides a profoundly uninformative explanation and an oddly worded apology (in fact the Japanese translation posted differs significantly and mentions “changing our passwords”):
N.T.Technology, inc was a victim of a cyber attack earlier today.
Some data for customers was compromised. Your data may have
been compromised. The security hole has been fixed, and is safe to use again.We are now preparing for the fix.
Please accept my apology for your inconvenience.
Sincerely,
Jim Watkins
Chairman
N.T.Technology, inc.
Despite this rather dubious assurance, signups are suspended and the service is due to be taken down for “maintenance” shortly.
2ch has made very little official comment on the matter (it does not even mention it on its own site), but semi-official incident summaries from their support boards confirm the following:
17,651 paid accounts and 146,217 trial accounts in total were leaked
All credit card numbers, names, addresses and email addresses associated with these leaked and are available publicly
A further 40,000 trip codes and mail addresses were leaked
2 months of posting data from 6/15 – 8/10 was leaked, affecting all posters
2ch’s management acknowledged the actual hack occurred on the 20th, but they only realised 5 days later when the pilfered data started to surface in public
“Fortunately” 2ch conducted very little checking of the personal information it collected, allowing signups with false data and various prepaid digital cash – a relief to the more circumspect users
Thread creation on a large number of “news” boards has also been disabled, largely because it was formerly restricted only to privileged users, whose accounts were all hacked – with the result that the boards were immediately rendered useless by a profusion of anti-Japanese and anti-Korean troll threads from users taking advantage of the leaked trip codes.
2ch’s management is said to be looking to pursue legal action against the hackers and those publishing the material on the web, although given the level of tech-savvy displayed by both them and police, and their less than harmonious relationship with the authorities, this does not seem promising.
Aside from the direct exposure of personal details, scrutiny of the exposed posting histories is also revealing a variety of the shady “stealth marketing” antics of all manner of groups and companies on the site – and looks likely to do more than a little reputational damage given the level of the average 2ch post.
Even 2ch founder Hiroyuki has been having an easy time of things of late – police attempts to prosecute him for drug-dealing for not deleting certain posts seem to have stalled, but tax authorities say he failed to report 100 million yen in income and just after 2ch was hacked so was his Twitter account, being defaced with anti-Japanese slogans:
Some cannot help but notice all this does not sit well with the theme of his upcoming book:
Saijaku Muhai no Bahamut “Dragons & Mechs?”
Monster Hunter X Megaman Event Profusely Blue
Love Live! Sunshine!! MV “Will Brighten Up Your Day!”
Top 10 Best Anime Girls of 2015
Hai to Gensou no Grimgar “Has Oppai!”
Picking Up Japan Express Vol. 36 Worth a Pickup
Dimension W Out Of This World
Odin Sphere: Leifthrasir PV Certainly Nostalgic
One-Punch Man Soundtrack PV Packs A Wallop
XmasTrickStar “A White Christmas Indeed…”
Wo-Class Carrier Ero-MMD In Dire Straights
Voice Translation Tool Promotional Video “Inexcusable!”
Luck & Logic Far From Lucky
Yandere Simulator Possibly Headed to Kickstarter
Top 20 Recent Anime Most In Need Of A Sequel
Hyrule Warriors Legends PV Clashes Interminably
Akagami no Shirayukihime English Dub Surfaces
Koukaku no Pandora Really Opens That Box
Gate Season 2 Darker Than Ever
Super Sweet Sonico Bikini Figure
Delectable Dizzy Cosplay by Lechat
Dark Elf Cosplay by Non Very Dark Indeed
Titillating Tamako Cosplay Perfectly Pink
Goddess of 2ch: “Full of Lust & Urges (& Also Videos)!”
Raunchy Reisen Inaba Cosplay by Tsuyato
Haruhi Bunny Girl Cosplay Rocks Out
Youmu Ero-Cosplay by Madoka Adachi Deadly Sexy
Comiket 89 Cosplay Sickeningly Sweet
Comiket 89 Cosplay A Guilty Pleasure
Comiket 89 Cosplay Ceaselessly Sexy
It seems like anonymity being destroyed on a site like that would be more detrimental than losing credit card info.
If someone seriously expects some degree of anonymity at a site, they shouldn't be submitting their credit card information and personal details there.
It would pretty much wipe out what the site is all about.
Let's see....
Shitty BB security, plus unsecured unencrypted user accounts, added together with a lousy archiving system.
Yeah... who would be surprised by this?
I think better question is... Why the hell did it take so long?
I think people honestly didn't think anyone could be this dumb so did't try and hack the site.
Actually, they were most likely compromised a long time ago; it was just that they didn't have anything interesting to publicly shame them with with until they got a hold users' credit card numbers.
Well, they just make a standard website with ignoring security aspect when they grow larger.
And all users will blame foreign Anonymous for this attack.
Let them learn something by hit them hard.
For those interested in translations:
2ch founder's twitter: JAAAAAAAAAAPPPPPP!!! lolololol
2ch founder's book title: "How to" on being super safe on social media. Stay out of trouble on facebook, twitter, and line. Advice from the former 2ch founder!
Yep, it sounds like Japan.
Can't wait til they blame it on foreigners, then it'll really sound like Japan.
Is it just me or is hacker activity rising as of late? Who's gonna be next, sankom? ^^
And what exactly do you propose they steal, the disposable webmails people use to register their accounts?
*starts hacking Sancom*
I wish Sancom would get hacked and all you pedophiles exposed for being filthy trash that youi are!
But most of them are just lolicons who only look at drawings
lol true dat
Not everybody on Sancom is a pedophile. If they were, it should be pointed out that YOU are here.
You're mad because younger people are more attractive than you. What a shame.
2D > 3D anyway.
It's funny because you're here to, if it does happen, I hope the FBI, knock at your door, first for being a dumb cunt.
If I'm a paedophile, why did I just fuck your 73yo mother?
lol is easier to think there is no pedo here but just a bunch of kids... ? Where internet is a place for knowledge, but most use for babbling about non-sense
That'd be his granny
Then who did I just stick my dick into?
lol my mother is 40 yo
Someone stole their sweet roll.
i bet the hacker is korean people
yeah well i bet you are a japanese than
That's a rather stupid assumption, considering anti Japanese AND anti Korean comments were posted from the compromised accounts. A more reasonable assumption would be that it was from a Chinese source.
>anti-japanese
chinese trolls
>anti-korean
japanese trolls
hacked by chinese & accounts made public, at which point chinese & japanese nerds downloaded said list and trolled hard
Facebook when? Please, someone kindly hack FB and delete all databases (though they have backups for sure) :D
Destruction to social networks! lol
It would be a great benefit to society if FB was exterminated from existence with the utmost prejudice.
But the US government would probably try and use such an event to pass some sorta of faggot spying laws.
We'll need laser guided missiles for that. And a sub. Which I guess the Russians will lend us if we tell them is for defense against Americans.
Problem is, Facebook works for the Russian Government too, spying on domestic users for them.
We should ask Korea to nuke that part of amarica
Failbook is nothing more then a thinly disguised spying program.
We should ask Korea to nuke that part of amarica
I've never been on 2ch, but if The users there are anywhere similar to the users of 4ch, then I find them "pursuing legal action" on the hackers hilariously ironic.
Well, 4chan pass have card option too.
I will not be surprised if someone hack 4chan to do the same shit.
>"pursuing legal action"
I think who will be sued is the 2ch for saving credit card data.
Wait, there's gold level account?
Wait, there's gold level account?
Agreed.
They are gonna brb church the shit out of those motherfuckers.
Lost my shit when I read the title of the book at the end.
somehow I don't feel that sorry for them
I can't feel sorry for a site that blocks foreign IP ranges from posting, shitty xenophobic Japanese.
They blocked non jap ip because of russians spaming the shit out of 2ch. Can't blame them, no one wants to deal with those retards.
The site is also spammed by Japanese users posting lame crap.
Japs deserve that shit
Right, because all foreign IP ranges match Russia. DERP
Same here I look at this as karma.
People on 2ch have credit cards? I thought they were all NEETs.
Hey, NEETS have access to credit cards. They live off their parents.
Also don't forget stock trading,buying and selling on ebay, and running scams.
>japan
>ebay
would you listen to this kid, he doesn't even know ebay completely flopped in that xenophobic isolationist island country