Tech

Here’s how a hacker was able to blow up Trump’s new free speech site

Truth Social was flooded with impersonation accounts despite not being officially launched.

Photo of Mikael Thalen

Mikael Thalen

Donald Trump looking into camera.

A hacker on Wednesday discovered that former President Donald Trump’s newly-announced social media platform “Truth Social” was publicly accessible online despite the official launch not set to take place until next year.

Featured Video

After Trump revealed in a press release his intentions to take on tech giants such as Facebook and Twitter with an uncensorable social network, a hacker, who asked not to be identified but claimed affiliation with the hacking collective Anonymous, began researching Truth Social’s corporate structure.

The social media network, which will be launched through a new company called Trump Media and Technology Group, aims to “create a rival to the liberal media consortium and fight back against the Big Tech companies of Silicon Valley, which have used their unilateral power to silence opposing voices in America.”

Advertisement

Truth Social’s website currently allows users to sign up for a waiting list and also advertises an iPhone app, produced by a company known as “T Media Tech LLC,” that is available for preorder.

Armed with the app developer’s name, the hacker told the Daily Dot that they were able to utilize Shodan, a search engine that locates servers exposed to the open internet, to track down the company’s digital footprint.

The hacker was able to locate numerous web domains as a result, including one that appeared to be running the mobile beta for Truth Social.

News of the public website quickly spread across social media after making its way to Canadian hacker Aubrey “Kirtaner” Cottle, who was able to set up faux accounts for numerous high-profile individuals such as QAnon guru Ron Watkins.

Advertisement
https://twitter.com/ThatNotoriousK/status/1450996235075268612?s=20

Given that the mobile beta was not yet intended for public use, handles such as @realdonaldjtrump and @mikepence were openly available.

The Daily Dot was able to secure the account for @donaldtrump, uploading the profile image and banner previously used by Trump on Twitter to showcase the lack of verification protocols.

Advertisement

Truth Social appeared to notice the activity and began not only restricting access to the users who had signed up but blocking others from registering accounts as well.

“You can no longer use your account, and your profile and other data are no longer accessible,” a notice on the website said. “You can still login to request a backup of your data until the data is fully removed, but we will retain some data to prevent you from evading the suspension.”

The entire domain running the mobile beta was taken offline entirely shortly after.

Advertisement

The incident is just one of several embarrassments that have befallen the social media venture in the last several hours.

Analysis of Truth Social’s terms of service also revealed that users are barred from everything from using capital letters excessively to making fun of the website itself.’


Read more of the Daily Dot’s tech and politics coverage

Nevada’s GOP secretary of state candidate follows QAnon, neo-Nazi accounts on Gab, Telegram
Court filing in Bored Apes lawsuit revives claims founders built NFT empire on Nazi ideology
EXCLUSIVE: ‘Say hi to the Donald for us’: Florida police briefed armed right-wing group before they went to Jan. 6 protest
Inside the Proud Boys’ ties to ghost gun sales
‘Judas’: Gab users are furious its founder handed over data to the FBI without a subpoena
EXCLUSIVE: Anti-vax dating site that let people advertise ‘mRNA FREE’ semen left all its user data exposed
Sign up to receive the Daily Dot’s Internet Insider newsletter for urgent news from the frontline of online.
Advertisement

 
The Daily Dot