- James Comey posts from a forest in wake of Mueller report 3 Years Ago
- These are the only online dating sites worth your time Today 10:29 AM
- Jameela Jamil sparks conversation about women having to make the ‘boyfriend excuse’ Today 10:23 AM
- Trump-Russia conspiracy theorists think they’ve found secrets in the Mueller report Today 9:32 AM
- Report: YouTube is done competing with Netflix, Amazon Today 9:27 AM
- Netflix drama ‘Coisa Mais Linda’ explores Bossa Nova clubs and women’s rights in Brazil Today 8:08 AM
- The best ‘Game of Thrones’ memes to get you pumped for season 8 Today 7:30 AM
- Amazon Echo Show (2nd Gen) vs Google Home Hub: Which is better? Today 7:00 AM
- Solange sings along to Ariana Grande on Instagram Stories—and fans are obsessed Today 6:37 AM
- How to stream the entire ’30 For 30′ series for free Today 6:30 AM
- Swipe This! My happiest Facebook Memories are making me miserable Today 6:30 AM
- Musketeers: Welcome to the global Elon Musk fan network Today 6:00 AM
- Lawsuit alleges YouTube’s unboxing videos are ‘abusive’ ads aimed at kids Sunday 3:48 PM
- Dr. Dre shades Lori Loughlin with Instagram flex about his daughter getting into USC Sunday 3:13 PM
- University of Georgia frat’s racist Snapchat video draws campus outrage Sunday 1:21 PM
Largest Bernie Sanders community on Reddit briefly falls victim to hacker prank
The hackers say they support Donald Trump.
Two pranksters say they rendered the subreddit, r/SandersforPresident, unusable for four minutes on Sunday night. Their malicious modification to the community’s webpage caused it to devolve into a chaotic spiral of flashing neon.
Moderators rapidly shut down the stunt, but not before some in the community took notice.
“So, short answer: yes; long answer: yes,” Alex Stigler, one of the moderators of Sanders for President, said in an email confirming the breach, “but it was absolutely inconsequential. We’ve been waiting for and expecting such chicanery for a while.”
Sanders for President, which boasts more than 164,000 users, has become one of the independent Vermont senator’s central hubs of online activism. The volunteer community is responsible for helping drive large crowds to Sanders’ presidential campaign stops. Last week, the community raised more than $1 million for the Sanders campaign, and the moderators have instituted myriad tools to help get out the vote for Sanders.
The pranksters, who go by the names boots and Teridax, claimed responsibility for the hack in Twitter direct messages with the Daily Dot on Sunday evening. Boots said that they gained access to a moderator’s account by using a password that was included in the dump of a “particular online streaming service in 2013.” The attacker would not confirm the name of the service, only that “it’s a public dump that’s been on the open Internet since 2013.”
The hijacked moderator account gave the pair access to the subreddits’ CSS code—the underlying data that tells your browser how to display the webpage—into which they injected a modification that crashed the sites’ functionality while still leaving it accessible.
Boots provided screenshots of a moderator’s account and said they had control of an account that was added as a moderator. The name that appears in the screenshots was listed as a moderator of Sanders for President, but the account has since been deleted.
“I’m not sure I’d say that the subreddit was ‘hacked,’ but an account was compromised momentarily,” said Stigler, who also serves as a lead organizer at Grassroots for Sanders. “In that time, they were able to change the CSS such as to render the subreddit unusable; however, as we keep back-ups of everything, the changes were reversed in a matter of minutes.”
Stigler confirmed that Sanders for President mods notified Reddit administrators, who added “additional security measures … as a response.”
In a public post on Sanders for President, the moderators explained what happened.
“Yes, the CSS went haywire for a second. The problem has been fixed,” subreddit moderator writingtoss posted. “Don’t get distracted by trolls.”
Writingtoss later updated the post, confirming that “a moderator’s account was compromised and used to tamper with our CSS. It’s been resolved and proper measures have been taken. Don’t get distracted. 22 hours to Iowa.”
The code that was inserted into the CSS file, making the subreddit unreadable and unusable, came from the r/reubenmchawk subreddit, boots said, which looks like that on purpose.
Screengrab via r/SandersforPresident
Once named one of Forbes’ 20 Under 20 and hired as a staff writer for the Daily Dot when he was still a senior in high school, William Turton is a rising tech reporter focusing on information security, hacking culture, and politics. Since leaving the Daily Dot in April 2016, his work has appeared on Gizmodo, the Outline, and Vice News Tonight on HBO.