Plaintext passwords galore in huge AdultFriendFinder hack


AdultFriendFinder was hacked (again) in October 2016. According to LeakedSource, which acquired a copy of the dataset, this amounts to more than 400m accounts, many with plaintext passwords, from AdultFriendFinder and associated websites.

The site was compromised with a local file inclusion exploit, which means the website's code allowed access to files on the server that aren't supposed to be public.

Nearly a million accounts have the password "123456". More than 100,000 have the password "password".

The non-plaintext passwords were easily cracked anyway, apparently due to some roll-your-own encryption that involved lowercasing everything, SHA1ing it and going back to bed. The longest passwords were "pussy.passwordLimitExceeded:07/1" and "gladiatoreetjaimelesexetjaimefum", with a Blackadder fan in #3 with "antidisestablishmentarianism" and a sybarite who reads XKCD in #4 with "pussypussymoneymoneyweedweed."

Hotmail was the most common email provider, followed by Yahoo and gmail. These three accounted for the vast majority of registered addresses, with AOL and Live an order of magnitude down.

Leaked Source isn't making the data set publicly available; but if they have it, others might too. Read the rest

Man blocks car exhaust


I feel like I've lost a year of my life expectancy just watching this. Read the rest

Bono named in Glamour magazine's Women of the Year list


U2 singer Bono is named among Glamour magazine's women of the year in recognition of his campaigning for womens' rights. The general reception runs the gamut from appalled dismay to despairing laughter.

Bono said he was grateful, and that men "have to be involved in the solutions," etc. Read the rest

Sony apologizes after girl band poses in Nazi costumes


Keyakizaka4, a Japanese pop duo, posed in Nazi-styled outfits at a 22 October concert. Sony, their label, has apologized; the youngsters themselves likely had no idea of the SS uniforms' deeper significance, reports the BBC, despite having worn them for the Halloween event.

Keyakizaka46 went on stage in Yokohama on 22 October wearing black capes and caps resembling those of SS officers Social media users were quick to point out similarities with the uniforms of Hitler's brutal paramilitary force. The band is a sister act to the country's popular AKB48 super group. Both are produced by Japanese hit-maker Yasushi Akimoto, an executive board member of the Tokyo 2020 Olympics committee.

Yasushi Akamoto posted his own apology as well. The machine translation is dubious but among the sentences it surely got right was "I'm terribly sorry."

. Read the rest

Actually make America great again by wearing 3D Eagle Crotch underwear


3D Wolf Crotch Underwear makes your man "sexy and wild," but does it honor the founding principles and ideals of the Union? No, it does not. Fortunately, there is also 3D Eagle Crotch Underwear, allowing you to bring justice and the American Way with you wherever you tread.

Wear it to work, to school, or to court... or (caution: true Americans only!) to the polls, augmented only with the Stars and Stripes, draped majestically across your shoulders.

Best of all, they're only $3.95 a pair: as cheap as a drive-in movie theater hot dog, and guaranteed to contain more m—O.K. I'll get my coat. Read the rest

I'll just drive my car off this tow truck, what could go wrong?


This gentleman didn't want a tow truck to take his car away, so he tried to drive off the truck's bed. You will believe what happened next. Read the rest

Attempted python selfie goes awry


A man attempting to take a selfie with a python was bitten by the python, reports the Reuters news agency. "It attacked me," said the victim, one of a group of people manhandling the massive snake in hopes of getting a photo with it. Read the rest

Better video of the legendary "controlled" explosion of a beached whale


We've posted about this in the past, but it was brought to my attention that the legendary exploding whale news report was rebroadcast not long ago, meaning that the best quality possible (given the age of the 8mm film) is now available for your whale-exploding pleasure.

Read the rest

Car follows parking arrow, drives off bridge


I'll bet the tapa isn't fresh, either

View post on
Read the rest

Nobel laureate spots Turkish banknote error


The Turkish five lira note, issued in 2009, has a DNA helix. But Nobel laureate Aziz Sancar noticed that the note "shows a left-handed Z-DNA helix winding from left to right, when it should be the other way round." What Sancar doesn't know is that the monetary systems of the world are controlled by the lizard people, whose DNA is exactly like that depicted on the banknote. Read the rest

A farm in Kansas receives non-stop threats and harassment because of mapping glitch


A digital mapping company called MaxMind offers an "IP geolocation" service that provides computer users' geographical locations. When MaxMind doesn't know a user's location, it spits out a default address that is at the approximate geographical center of the continental US. It is the front yard of a farmhouse near Wichita, Kansas. For the last fourteen years, MaxMind's database has listed 600 million IP addresses at this farmhouse. As a result, the people who live there receive a non-stop barrage of harassment.

For the last decade, Taylor and her renters have been visited by all kinds of mysterious trouble. They’ve been accused of being identity thieves, spammers, scammers and fraudsters. They’ve gotten visited by FBI agents, federal marshals, IRS collectors, ambulances searching for suicidal veterans, and police officers searching for runaway children. They’ve found people scrounging around in their barn. The renters have been doxxed, their names and addresses posted on the internet by vigilantes. Once, someone left a broken toilet in the driveway as a strange, indefinite threat.

How an internet mapping glitch turned a random Kansas farm into a digital hell Read the rest

Curb Your Miss Universe


A film by Jake Rasmussen Read the rest

There's a "100 hour rule" now


We all know about the 10,000-hour rule, whereby that amount of practice (or thereabouts) is held to be necessary to fully master a given skill. And not long ago I proposed the 5-hour rule, which is what it takes to pretend to be able to do something on video. Now there is also a 100-hour rule, which is what it takes "to become much more competent than an absolute beginner."

Leo Polovets's angle centers on sales—yes, another VC who thinks he's a public intellectual!—but I think he's onto something with the idea of there being a threshold of competence where egregious mistakes stop being made, and that it generally takes more than two weeks but less than a month to train someone past it. Read the rest

Slate offers the correction of the year


No sweat, guys. It happens to the best of us. Read the rest

Japanese live streamer accidentally starts his apartment on fire


This guy was showing off his cigarette lighters and matches when he accidentally started a small fire. While he was putting it out, he started an even bigger fire, which wasn't so easy to put out. Read the rest

Be careful when spelling the word "Coconut"

This 'unfortunate typo' became a headache for a supermarket in New Zealand.
The sign advertising Griffins Krispie Toasted Coconut Biscuits misspelled the word coconut, turning it into an offensive expletive.

The mistake, which happened at Countdown's Meadowbank store in Auckland on Tuesday, led to a social media frenzy with a photo of the sign posted on Countdown's Facebook receiving more than 7000 likes and almost 1500 shares.

The Facebook post also inspired a stream of comments about other amusing typos spotted on signs and jokes about the misspelling.

[via Arbroath] Read the rest

Google mothballs map-making feature


Does U.S. President Obama share office space with an outfit called "Edwards Snow Den"? No, he does not, which—among many similar instances of "vandalism"—is why Google Maps is mothballing its Map Maker feature.

Google's Pavithra Kanakarajan writes:

As some of you know already, we have been experiencing escalated attacks to spam Google Maps over the past few months. The most recent incident was particularly troubling and unfortunate - a strong user in our community chose to go and create a large scale prank on the Map. As a consequence, we suspended auto-approval and user moderation across the globe, till we figured out ways to add more intelligent mechanisms to prevent such incidents.

"It's going to take longer than a few days" to figure out something better than manual approval of edits, she added. [via] Read the rest

More posts