Personal information of about 93,000 people donated to the anti-vaccine demo 'Freedom Convoy' by a truck driver leaked due to a cyber attack on a crowdfunding site
In Canada, truck drivers protesting the obligation to inoculate the new coronavirus vaccine are conducting a protest demonstration called '
'Freedom Convoy' donors exposed in possible cyberattack on GiveSendGo crowdfunding site --CyberScoop
https://www.cyberscoop.com/freedom-convoy-donors-exposed-in-possible-cyberattack-on-givesendgo-crowdfunding-site/
Hackers Just Leaked the Names of 92,000'Freedom Convoy' Donors
https://www.vice.com/en/article/k7wpax/freedom-convoy-givesendgo-donors-leaked
Funding site linked to Canadian trucker protest hacked, donor info leaked online --The Verge
https://www.theverge.com/2022/2/14/22933772/givesendgo-funding-freedom-convoy-hacked-donor-leaked
In a protest demonstration called 'Freedom Convoy' that Canadian truck drivers are conducting to oppose the obligation to vaccinate the new coronavirus, a page to solicit donations from supporters has been opened on the crowdfunding site GiveSendGo . It has been.
GiveSendGo had been ordered by the court to 'stop paying donations to Freedom Convoy,' whereas 'Canada has full jurisdiction over how to manage funds on GiveSendGo.' No. All GiveSend Go campaigns will be funded directly to the campaign leaders, 'he said, claiming no plans to stop payments. Immediately after that, GiveSendGo was hacked by someone and went offline. At the time of writing the article, even if I open GiveSendGo, it just says 'I'm offline due to maintenance and server upgrades', and I can't donate to any project.
GiveSendGo
https://www.givesendgo.com/
A hacking attack redirects GiveSendGo from a normal domain (givesendgo.com) to another domain ( givesendgo.wtf ), where the Disney movie Frozen is now looped. It seems that it was. Mikael Thalen , a reporter at The Daily Dot who quickly noticed that GiveSendGo was hacked, said, 'The crowdfunding site GiveSendGo used by Freedom Convoy has its domain redirected to givesendgo.wtf. At the redirect, a movie of Anna and the Snow Queen is being played with a manifest blaming GiveSend Go and Freedom Convoy. '
BREAKING: GiveSendGo, the crowdfunding website used by the Freedom Convoy, is now redirecting to the domain GiveSendGone [.] Wtf.
— Mikael Thalen (@MikaelThalen) February 14, 2022
A video from the Disney film Frozen now appears alongside a manifesto condemning the website and the Freedom Convoy. Pic.twitter.com/3TLAwfvZ3w
The first half of the movie that was playing on the redirected page is as follows. It seems that the redirected page had a link to a page showing the connection with the attack on the Capitol in the United States on January 6, 2021.
Here is the first half of the video uploaded by hackers who targeted the crowdfunding website GiveSendGo. Pic.twitter.com/uisu2xjG2U
— Mikael Thalen (@MikaelThalen) February 14, 2022
GiveSendGo is a self-proclaimed 'number one crowdfunding platform for Christians that can be used for free' and has been funded to cover defense costs for demonstrators Trump supporters in the event of a federal capitol raid. It is also known for that .
GiveSendGo soon became a Freedom Convoy as GoFundMe, a more prominent crowdfunding site with a similar name, closed a page that quoted police reports of violence and other illegal activities and solicited donations to Freedom Convoy. Became the main source of income for.
However, major Canadian banks have already closed accounts related to Freedom Convoy, and Toronto-Dominion Bank has personal accounts with more than $ 1 million related to demos. We are showing a response to freeze .
When Freedom Convoy advocates flooded GiveSendGo, security researchers said, 'GiveSendGo hasn't securely set up Amazon S3, the cloud storage service used to host files online, so it's malicious. One person warned GiveSendGo that a large amount of data about donors was available, including photos, copies of passports, etc. ' He pointed out a security deficiency. GiveSendGo claimed to have fixed an issue with Amazon S3 after being contacted by foreign media TechCrunch, but it ended up being hacked.
In addition, the information about the donor leaked by this hack is obtained by Distributed Denial of Secrets of the data leakage hosting website, and the data that summarizes the name, email address, zip code, IP address, etc. is 93,000. It is clear that it was saved near the case. The e-mail addresses included in the leaked data included those with the domain ending in '.gov', which is an e-mail address used by government agencies, and was donated by employees such as TSA , DOJ , BOP , and NASA . It turns out that. As a result of analyzing the leaked data, most of the people who donated to Freedom Convoy donated to the United States (56%) and Canada (29%), followed by the United Kingdom, Australia and Ireland.
Also, according to another media, VICE News, Freedom Convoy has collected $ 8.7 million (about 1 billion yen), and the largest donor is donating $ 215,000 (about 25 million yen). However, the name is unknown. Among the donors, Thomas Siebel , who has made a huge fortune through software development, is mentioned as a celebrity. In addition, donors are said to have entered messages that are typical of Christians such as 'God' and 'Jesus' when making donations, and there were thousands of references to tyranny .
In addition, Freedom Convoy is also being watched by online scammers, and it is said that there are a lot of fraudulent groups on Facebook soliciting donations to Freedom Convoy, and Meta, the operator of Facebook, has multiple groups. And announced that the page has been deleted.
Related Posts:
in Security, Posted by logu_ii