Oh, it is good.
https://twitter.com/hashtag/ParlerLeaks
https://twitter.com/hashtag/parlerhack
Post any good finds.
Best explanation I've seen why this is a big deal.
WordPress Config file being accessible is a big yikes. Gives you the destination for the DB as well as the username and password to sign into it. MySQL export and anything not using MD5 Hash is visible right away - the rest? Decrypt.
Soon as the DB has been exported, game over.
https://twitter.com/IckleIzu/status/1331401417186299909
Also: let’s say my profile gets hacked. What are they going to do? Post? Comment? It’s not like they can send themselves money or buy things in my name.
I was thinking about this too and it’s like unless you’re using the same username/password on here as your bank, the worst that could happen is they hijack a power poster’s reputation on here and use it to influence people in some kind of negative way, which is a lot of effort for what actual benefit and also why we shouldn’t have power posters.
the top 1% of posters make 50% of posts
this shall not stand
Some people get attached to their online identity. But I'm all for changing your account at the same time you change your toothbrush. In the future when it comes time to vote in mods and things like that you might need to keep an account to be a part of those decisions but that's an opt in thing.