this post was submitted on 30 May 2024
671 points (99.1% liked)

Technology

59091 readers
5522 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 103 points 5 months ago (1 children)

I'm checking the Xitter page of the alleged source of the attacks, SN_Blackmeta. But what caught my attention the most was another message. And overall the account.

  • Their group was formed in April 2024. It's an extremely new group.
  • Their targets overall seem too "random".
  • They're using Xitter dammit. Do they not care about their own security?
  • Whoever wrote the English version of the text speaks Dutch or German. Probably Dutch, as their spelling corrector is "fixing" words like "beginning" into "beginnen", "witne[ssed]" to "witten[seed]", etc.
  • Don't trust me on what I'm going to say as I don't speak Russian, but there's also something off with their Russian version of the text. Typically Russian doesn't use a comma after time expressions like "в этот день" (on this day); you could argue that it's there due to that parenthetical expression (7 апреля 2024 года), but even its presence feels off. Also the fact that they spelled out "года" instead of just "г.".

If I had to take some bets: the group is from Western Europe, not Russia or any country where Arabic is the dominant language. They're likely skript kiddos trying to take the "glory" of attacks conducted by someone else; if they aren't, my second guess would be that they're doing it just to call attention to themselves ("look ma! I'm a haxor!!! I'm so cool!! X-D" style).

[–] [email protected] 37 points 5 months ago (2 children)

Someone pointed out in another thread that it would make a lot of sense that this attack was for clout/reputation on the darkweb as a high profile advertisement for their DDOS business.

[–] [email protected] 43 points 5 months ago (3 children)

"DDOS business"

...

"So what do you do for a living?"

"Oh I'm just a massive piece of shit, I own a business that ruins things for people."

[–] [email protected] 41 points 5 months ago

"Oh you work at Microsoft!"

[–] [email protected] 12 points 5 months ago (1 children)

Actually worse than crypto miners

[–] [email protected] 4 points 5 months ago (1 children)
[–] [email protected] 5 points 5 months ago

There are people who spend a tonne of energy and materials needed and wanted across the planet to fund crime and trash all that material, just to fill their wallet

and then there's people who waste tons of other people's material and energy to selectively hurt others by participating in crime, just to fill their wallet

[–] [email protected] 8 points 5 months ago

So instead of "look ma, I'm cool", it's "look potential hirer, I'm profitable!".

Then it makes sense why they'd translate their stuff in EN/RU/AR even being potentially not speakers of any of them - because their hirers might.