Naoki Hiroshima was lucky enough to snag a one-character Twitter username: @N. Over the years, he'd been offered large sums -- as much as $50,000 -- for the name, but he kept it. Then, according to a horrifying first-person account, a hacker socially engineered the last four digits of his credit-card out of Paypal, used that information to seize control of his Godaddy account, and threated to trash all of Hiroshima's websites unless Hiroshima transferred @N to the hacker. The hacker also seized control of Hiroshima's Facebook account. The attack took place over the Martin Luther King, Jr day holiday, and Hiroshima couldn't get his case escalated to anyone at Twitter, Godaddy or Paypal while it was taking place, and so he lost his domain. All three companies now say that they're looking into his story. Hiroshima offers some helpful advice on avoiding his fate (use two-factor authentication, mostly).
I'd add that it's generally good practice to avoid Godaddy, because they're SOPA-supporting sellout scum, and they suck.
I later learned that the attacker had compromised my Facebook account in order to bargain with me. I was horrified to learn what had happened when friends began asking me about strange behavior on my Facebook account.
I received an email from my attacker at last. The attacker attempted to extort me with the following message.
From: SOCIAL MEDIA KING
To: <*****@*****.***> Naoki Hiroshima
Date: Mon, 20 Jan 2014 15:55:43 -0800
I’ve seen you spoke with an accomplice of mine, I would just like to inform you that you were correct, @N was the target. it appears extremely inactive, I would also like to inform you that your GoDaddy domains are in my possession, one fake purchase and they can be repossessed by godaddy and never seen again D:
I see you run quite a few nice websites so I have left those alone for now, all data on the sites has remained intact. Would you be willing to compromise? access to @N for about 5minutes while I swap the handle in exchange for your godaddy, and help securing your data?
How I Lost My $50,000 Twitter Username [Naoki Hiroshima/Medium]
(via Hacker News)
(Image: Blackmail, a Creative Commons Attribution Share-Alike (2.0) image from jeanette4's photostream)
Attorney General Jeff Sessions, having been thrown under the bus by Donald Trump, has clearly run out of fucks to give, and so now he’s not only reviving the feel-good anti-drug program that convinced kids to take drugs, not only directing fed cops to arrest people who take weed in states where it’s legal — […]
Hey, remember how Bill Clinton doubled down on the War on Drugs, perfecting Reagan’s haphazard and shoddily made race-war into a well-oiled incarceration machine that turned America into the world’s greatest incarcerator, a nation that imprisoned black people at a rate that exceeded Apartheid-era South Africa?
The word on the Hill is that Trump will nominate Cheryl Stanton to head the Department of Labor’s Wage and Hour Division, a step up from her current job as head of the South Carolina Department of Employment and Workforce, where her tenure has been marked by high-profile resignations over her plans to trump up […]
The TREBLAB X11 Earphones are versatile, offer great sound, and are currently $32.99 in the Boing Boing Store.These Bluetooth earbuds are a great workout companion. They’re totally sweat proof and their ear-fins keep them snugly in place during high activity — something that Apple’s AirPods can only do if you were blessed with precisely the […]
Whether you’re a seasoned entertainment industry veteran or a student working on your first spec script, having the right tool for the job will make a huge difference in your focus and productivity.Final Draft 10 is far and away the world’s best screenwriting software, used extensively by professional film and TV writers at top production […]
Web content creators who don’t have a solid SEO strategy should take note of Webtexttool. It’s a service that pulls in anonymous data from their entire user base to offer crowdsourced guidance that increases your search page ranks. By analyzing prior user successes, it helps you better gauge how your posts will perform at a […]