An established cybercrime group with a track record of attacking political targets posted on Tuesday roughly two gigabytes of data from the Heritage Foundation, a prominent conservative think tank based in Washington, D.C.
Self-described “gay furry hackers,” SiegedSec said it released the data in response to Heritage Foundation’s Project 2025, a set of proposals that aim to give Donald Trump a set of ready-made policies to implement if he wins this fall’s election.
The data includes the “full names, email addresses, passwords, and usernames” of people associating with Heritage, vio said, including users with U.S. government email addresses.
The attack was carried out as part of SiegedSec’s “OpTransRights,” campaign, which has previously included the defacement of government websites and data theft from states either considering or implementing anti-abortion or anti-trans legislation.
SiegedSec, which emerged on Telegram in April 2022, has also targeted various NATO portals, the city of Fort Worth and a company involved in the monitoring of offshore oil and gas facilities.
My ass reinstalling dbeaver for some unknown reason...
E: I glanced at it in a text editor but the file is so big it crashed. It has info from as far back as at least 2008. User's seemingly IRL names, email addresses, IP addresses, and at least states they are in(as stated in the OP). Pretty fun stuff. I might actually try and get dbeaver set up for it later because it's hard to parse in plain text.
Those are hashed passwords. None of this is really immediately useful information as far as I can tell... The bulk of the data is automated stuff from WP plugins like spam filtering and such.
I wonder if they're salted.
Gamers need to bust out those fancy GPUs and start running hashcat. A lot of these reactionaries are probably using shit passwords, I bet a bunch can be cracked with dictionary attacks.