Japan’s top BBS 2ch.net is reeling after being hacked, with the credit cards and personal details of tens of thousands of users leaked and their anonymity in tatters, and posting disabled across swathes of the site.
Due to 2ch threads expiring in a matter of days or hours on the more active boards, a ¥300 a month premium membership was instituted to allow access to the archived material, requiring credit card details for payment.
Given the site’s pathetically obsolete technology it is sadly no surprise to learn that they apparently held all these details in unencrypted form on their own public-facing servers, allowing unknown hackers to make off with them and later post them on Tor.
The American company providing the “2ch Viewer” provides a profoundly uninformative explanation and an oddly worded apology (in fact the Japanese translation posted differs significantly and mentions “changing our passwords”):
N.T.Technology, inc was a victim of a cyber attack earlier today.
Some data for customers was compromised. Your data may have
been compromised. The security hole has been fixed, and is safe to use again.We are now preparing for the fix.
Please accept my apology for your inconvenience.
Sincerely,
Jim Watkins
Chairman
N.T.Technology, inc.
Despite this rather dubious assurance, signups are suspended and the service is due to be taken down for “maintenance” shortly.
2ch has made very little official comment on the matter (it does not even mention it on its own site), but semi-official incident summaries from their support boards confirm the following:
17,651 paid accounts and 146,217 trial accounts in total were leaked
All credit card numbers, names, addresses and email addresses associated with these leaked and are available publicly
A further 40,000 trip codes and mail addresses were leaked
2 months of posting data from 6/15 – 8/10 was leaked, affecting all posters
2ch’s management acknowledged the actual hack occurred on the 20th, but they only realised 5 days later when the pilfered data started to surface in public
“Fortunately” 2ch conducted very little checking of the personal information it collected, allowing signups with false data and various prepaid digital cash – a relief to the more circumspect users
Thread creation on a large number of “news” boards has also been disabled, largely because it was formerly restricted only to privileged users, whose accounts were all hacked – with the result that the boards were immediately rendered useless by a profusion of anti-Japanese and anti-Korean troll threads from users taking advantage of the leaked trip codes.
2ch’s management is said to be looking to pursue legal action against the hackers and those publishing the material on the web, although given the level of tech-savvy displayed by both them and police, and their less than harmonious relationship with the authorities, this does not seem promising.
Aside from the direct exposure of personal details, scrutiny of the exposed posting histories is also revealing a variety of the shady “stealth marketing” antics of all manner of groups and companies on the site – and looks likely to do more than a little reputational damage given the level of the average 2ch post.
Even 2ch founder Hiroyuki has been having an easy time of things of late – police attempts to prosecute him for drug-dealing for not deleting certain posts seem to have stalled, but tax authorities say he failed to report 100 million yen in income and just after 2ch was hacked so was his Twitter account, being defaced with anti-Japanese slogans:
Some cannot help but notice all this does not sit well with the theme of his upcoming book:
| 
Mayoiga A Chaotic Mess
Undead Darling: “Necrophilia Never Looked So Appealing”
Energetic Anna Mochizuki Figure
Top 20 Anime That Boast The Best Battles
NieR: Automata Brings New Futa (?) To The Fray
Koutetsujou no Kabaneri Dead Sexy
Etrian Odyssey V Fences Furiously
Mushroom Lollipop CM Tastefully Phallic
Seitokai Yakuindomo OAD “The Perversion Continues!”
Puzzle & Dragons X OP – “For Kids!?”
Cheerful Yukari Yukata Figure
IdolMaster Nets Korean Live Action TV Drama
Top 20 Anime Deserving of a Second Season
Valkyrie Anatomia: The Origin Announced – But…
Strangers Fisting For Candy: “A Pretty Sweet Deal!”
Netoge no Yome Grinds Hard
King Of Fighters XIV Trailer Boasts Breasts & Brawn
Yuzuruha Figure Sexy & Sophisticated
IdolMaster: Platinum Stars Trailer Happier Than Ever
Top 10 Most Anticipated Anime of Spring 2016
Marie Rose Cosplay by Mike Undeniably Sexy
Tasha Tracer Cosplay Truly Tantalizing
Witch Craft Works Cosplay by Kagune Intensely Seductive
Kaine Cosplay by Yuricha Flawless
Kasumigaoka Utaha Cosplay Pretty Pure
Goddess of 2ch “Another Bathing Beauty!”
Tantalizing Hestia Cosplay Busts Out
Kashiwazaki Sena Cosplay Pure & Innocent
Minami Kotori Casino Girl Cosplay Takes No Chances
Shimakaze Cosplay by Ema Sakura
please upvote this comment
I've never been on 2ch, but if The users there are anywhere similar to the users of 4ch, then I find them "pursuing legal action" on the hackers hilariously ironic.
Agreed.
They are gonna brb church the shit out of those motherfuckers.
Well, 4chan pass have card option too.
I will not be surprised if someone hack 4chan to do the same shit.
>"pursuing legal action"
I think who will be sued is the 2ch for saving credit card data.
Wait, there's gold level account?
Wait, there's gold level account?
2 words
HA-HA!
To tell the truth, I'm on little meshiuma state now.
2ch banned again the foreigner IP because of new free VPN system and I wasn't able to comment on the board.
I hate the poverty board people for the anti Japan shit and I hate the korean hate against japan but...sorry Japan but I feel revenged with this incident.
Maybe 2ch users need to find out alternatives for 2ch.
next2ch.net, open2ch.net...
So IT WAS THE KOREANS!
I heard those were something about internal dispute of administration of 2ch.
Maybe related to tax evasion of hiroyuki.
Also, Korean govern has the black ball account of 2ch.
If it really was by Koreans, it would be an shot to foot because it will...better saying, It's exposing the Korean agent provocateur working on 2ch.
?? SOS?
So it was HACKOREAD?
somehow I don't feel that sorry for them
I can't feel sorry for a site that blocks foreign IP ranges from posting, shitty xenophobic Japanese.
They blocked non jap ip because of russians spaming the shit out of 2ch. Can't blame them, no one wants to deal with those retards.
Japs deserve that shit
The site is also spammed by Japanese users posting lame crap.
Right, because all foreign IP ranges match Russia. DERP
Same here I look at this as karma.
"¥300"
:o
That’s around 3 USD for your information.
It makes me wonder why people insist on using 2ch, their forum is a mess of usability and readability. All the text is so hard to find that if it's not newly posted, it's completely lost.
I went to 4chan several times and I simply can't navigate that pile of rubbish. Everything's so messy, I don't understand how people can spend all day there :/
Well, it might be my fault for not understanding the site lol
4chan was like that until recently. Now we have a relatively modern browsing system and some reasonably reliable archives. Hope Moot is clever enough to salt everyone's private info for the membership feature.
True. Many of the Japanese sites are laden with texts, which makes them really ugly and unreadable. Also, what puzzles me is that they always have these member/VIP areas, links and pictures posted on websites are usually dead/deleted. I don't see that happening often on Western image-hosting sites (except those that are really old), so...it's really confusing. The Japanese Internet is so different that it sort of gave people the anti-foreigner feeling.
For some reason despite leading the world in robotics and consumer electronics Japan lags behind most of the world in website technology.
I hate to say it but even the Chinese seem to make better websites though there's are still ugly.
Part of this might be because a lot of Japanese access sites on devices with castrated web browsers such as phones and game consoles vs home computers.
The rest maybe just a poor sense of esthetics?
because simple sites work best with their mobile phone driven society. if they had larger homes to house real computers, their sites would reflect that focus in technology.
Let's see....
Shitty BB security, plus unsecured unencrypted user accounts, added together with a lousy archiving system.
Yeah... who would be surprised by this?
Yep, it sounds like Japan.
Can't wait til they blame it on foreigners, then it'll really sound like Japan.
I think better question is... Why the hell did it take so long?
I think people honestly didn't think anyone could be this dumb so did't try and hack the site.
Actually, they were most likely compromised a long time ago; it was just that they didn't have anything interesting to publicly shame them with with until they got a hold users' credit card numbers.
Well, they just make a standard website with ignoring security aspect when they grow larger.
And all users will blame foreign Anonymous for this attack.
Let them learn something by hit them hard.
For those interested in translations:
2ch founder's twitter: JAAAAAAAAAAPPPPPP!!! lolololol
2ch founder's book title: "How to" on being super safe on social media. Stay out of trouble on facebook, twitter, and line. Advice from the former 2ch founder!
It seems like anonymity being destroyed on a site like that would be more detrimental than losing credit card info.
It would pretty much wipe out what the site is all about.
If someone seriously expects some degree of anonymity at a site, they shouldn't be submitting their credit card information and personal details there.
Aren't 2chan servers also hosted in the US?
Well it's not hard to believe if the servers were hosted in the US for a number of reasons. So wtf was the company using the money for if they don't even bother to update their servers and security Probably spent it on hookers and blow.
It's not like the board is very technologically advanced to begin with. There is no archive due to the large amount of posts. There is no visual design, everything is in plain colours and ugly fonts. It only has a few tables here and there, no search function. People are only using it because of its popularity, its history. To be honest, it looks like a first-term IT student's web project.
Actually it's like viewing something from the 1990s internet.
>servers based in the US, that must be the problem
hurr durr
Kill yourself
Depends on what the hackers have compromised. Both the hosting company and the site owner are responsible for the security here.
People on 2ch have credit cards? I thought they were all NEETs.
Hey, NEETS have access to credit cards. They live off their parents.
Also don't forget stock trading,buying and selling on ebay, and running scams.
>japan
>ebay
would you listen to this kid, he doesn't even know ebay completely flopped in that xenophobic isolationist island country
If it was that insecure I'm surprised it took this long to happen.
That hacker was waiting for more of users.
Now watch these dirty 2chaners wash up on 4chan.
those xenophobes would rather use dead shit tier boards like desu, to avoid all the foreigners