More on the Parler Hack. (Miscellaneous chaos)

Parler has been compromised. DM's as well as SSN's and other ID leaked (twitter.com/kevinabosch)
4 points by fooey 37 minutes ago | hide | past | favorite | 6 comments

fooey 36 minutes ago [–]

Here's an additional source with an ENV dump

Link to tweet

reply

slondr 21 minutes ago [–]

Am I missing something? I don't see anything about SSNs here
reply

newacct583 10 minutes ago [–]

Someone posted a link to a Parler influencer agreement document which said they would ask for things like government IDs. It's entirely unclear if they ever took that data or if was available via this database. But... yeah, this is the whole Parler site it looks like.
reply

ev1 25 minutes ago. [–]

Why in the absolute fuck is Parler requesting any form of PII/PCI data?
reply

fooey 22 minutes ago. [–]

For "Verified" accounts
reply

https://news.ycombinator.com/item?id=25203846

Link to tweet

Text: BREAKING: There was just a #parlerhack, this was publicly available and unencrypted on their public API endpoint. Not sure what they've changed yet, although expect a ton of data shortly, we will post updates. #ParlerLeaks

Link to something called an ENV Dump (DU computer and tech experts needed here!)

https://archive.ph/Mll5H

Sample from the ENV Dump:

# Database Configuration
define( 'DB_NAME', 'wp_parler' );
define( 'DB_USER', 'parler' );
define( 'DB_PASSWORD', 'hIP9PEV6u1GXfG4F8jEA' );
define( 'DB_HOST', '127.0.0.1' );
define( 'DB_HOST_SLAVE', '127.0.0.1' );
define('DB_CHARSET', 'utf8');
define('DB_COLLATE', '');
$table_prefix = 'wp_';

# Security Salts, Keys, Etc
define('AUTH_KEY', '@,*9_voP3sKC3z&&P}[(-h2#UOM_0]*[02%]MW:h7}L,G.IN1j@bKY0ohOqH');
define('NONCE_KEY', 'E@V!WK#Z0h%ZRs5dRg?7!orCFbGAUWLXxf3|:55g(++`$CQVc53n7]U}}]ck5{;l');
define('AUTH_SALT', '+!5MfxQ7]x >FNiuS|/c:nX yG=ksoW)+jZbgjogXQar)*,&HY>{|*v8pBA;$|-w');
define('SECURE_AUTH_SALT', '+bq>0u,c^1#[7l1#|R+7-[;$iw>3sQ@N|^l>x7-eci(>}');

# Localized Language Stuff

define( 'WP_CACHE', TRUE );

define( 'WP_AUTO_UPDATE_CORE', false );

define( 'PWP_NAME', 'parler' );

define( 'FS_METHOD', 'direct' );

define( 'FS_CHMOD_DIR', 0775 );

define( 'FS_CHMOD_FILE', 0664 );

define( 'PWP_ROOT_DIR', '/nas/wp' );

define( 'WPE_APIKEY', 'a1495db2888c2a21d556a9d9d0617935fbb5be57' );

define( 'WPE_CLUSTER_ID', '151738' );

define( 'WPE_CLUSTER_TYPE', 'pod' );

define( 'WPE_ISP', true );

define( 'WPE_BPOD', false );

define( 'WPE_RO_FILESYSTEM', false );

define( 'WPE_LARGEFS_BUCKET', 'largefs.wpengine' );

21 replies, 2659 views

Thread info Bookmark this thread Trash this thread

Reply to this thread

Always highlight: 10 newest replies | Replies posted after I mark a forum

Replies to this discussion thread

21 replies	Author	Time	Post
More on the Parler Hack. (Miscellaneous chaos) (Original post)	Mike 03	Nov 24	OP
Cambridge Analytica people who are running this for the Mercers are	octoberlib	Nov 24	#1
Thank you	underpants	Nov 24	#2
I hope those posting here bragging about joining that site to stir shit have not done so.	cwydro	Nov 24	#3
I don't think anyone here was considered an "influencer" over there...	brooklynite	Nov 24	#9
Well, that's good to hear.	cwydro	Nov 24	#15
Isn't that crazy?	Mike 03	Nov 24	#4
My only though is that its a russian site collecting data....	ace3csusm	Nov 24	#5
"What is PCI and PII data?" - Answered	Mike 03	Nov 24	#6
These are the kinds of people who won't give a phone number to a restaurant for contact tracing	gollygee	Nov 24	#7
...	Mike 03	Nov 24	#8
Who said that their decision-making made any sense?	Blue_true	Nov 24	#18
Remember they'll trust anything that is a part of their own tribe.	ego_nation	Nov 24	#19
Gee. I don't think anybody could have predicted that these hackers	Eugene	Nov 24	#10
Looks like a site built with WordPress	turtleblossom	Nov 24	#11
Maybe left it at	BumRushDaShow	Nov 24	#14
Why would there be SSNs on Parler??? n/t	Ms. Toad	Nov 24	#12
I wish I understood one word of this	BigmanPigman	Nov 24	#13
It's not Russian, but domestic skulduggery	Brother Buzz	Nov 24	#20
I actually understood that!	BigmanPigman	Nov 24	#21
Are these people being hacked on Perilous Parler the same people concerned with their	abqtommy	Nov 24	#16
I don't think it's real	LeftInTX	Nov 24	#17