The distributed denial-of-service (DDoS) attack, first publicized by an Imgur employee on Reddit, used Imgur links to send huge amounts of traffic to 4chan and 8chan. Whenever a user on Reddit’s 4chan subreddit clicked on an Imgur link, the link opened a hidden window off of the user’s screen and loads hundreds of image files located on the 4chan/8chan servers, effectively destabilizing the sites and slowing down legitimate traffic to them.
Several Reddit users initially suggested that Imgur employees deliberately added the malicious code to their site, but most people commenting on the attack assumed that it was an external breach. As it turns out, neither seems to be true.
The Imgur employee who described the attack said that, while Imgur itself wasn’t hacked, the company did discover an exploit in its code that facilitated the attack.
While the vulnerability may have been fixed, it’s still important to take precautionary steps if visited the 4chan subreddit or suspect that you may have clicked an infected Imgur link. To be safe, you should clear your browser’s cache, including your browsing data and cookies.
Illustration by Max Fleishman