Ok. So I just happened to open up wikileak's twitter a few minutes ago, just in time to see two tweets go live. The first is a repost of the earlier picture, with a caption. The second is a link to a "Statement by wife Susan Benn on the death of her husband & WikiLeaks board member, Prof Gavin MacFadyen," with a link.
Here's where it gets fucking weird. I, of course, clicked the link. It hung. That's when I noticed it wasn't an https. So I edited it, and imagine my surprise when firefox gave an SSL certificate warning. The certificate is issued to logancij.com, not tcij.org.
So I pulled it up in Tor. Added an exception for the certificate. That's when it got really scary, see pic 3. I denied the pull request and waited. Nothing, except a page not found header. No 404 page or anything ever loaded. I'm sure as hell not permitting a canvas pull, and this is all definitely a little weird.
Discuss and dig, or sage. there's too many threads going nowhere today.
this looks an awful lot like an identification attempt to launch a payload against a specific target, as described in the snowden documents they probably hijacked the redirect link to the statement by his wife the nsa is probably trying to locate the keys, hoping the keyholders will be complacent enough to click a link they believed trusted
tell wikileaks about this, they can try to delete the dangerous tweet or at least see what it does
Ian Butler
yeah that is fucked (didn't go to the site, went to whois). Was thinking possibly some idiot repeated the same cert for two sites. They didn't and second site owner (the one where the cert is) has hidden ownership.
THIS I don't have twitter or I would.
Aiden King
I really have no fucking idea what's going on with wikileaks. I've ran into people that I trust talking about how they think that saying wikileaks is compromised is the newest shill tactic which makes sense but at the same time there's definitely suspicious activity going on from them.
Sebastian Allen
OP here. I don't have a twitter.
The link is wrapped by twitter's t.co, we were suspicious that was compromised days ago. I've managed to locate a google snapshot of the page, it's a legitimate statement by his wife. However something really, really, REALLY fucked is going on with the traffic there.
David Nelson
bump
Adrian Taylor
Bumb
Caleb Anderson
So it's been compromised after all?
Mason Thomas
Holy fuuk thats creepy shit. Bump
Ethan Powell
It's a man in the middle attack
Josiah Sullivan
fuuuck, I don't have a twitter either someone transmit them the info in this thread as soon as possible? pretty please?
Anthony Kelly
I don't know what to believe anymore. I honestly don't think it's a shill tactic, I think it's just something that caught on among us. Or maybe it really is disinfo. I really don't know anymore.
This doesn't prove wikileaks is compromised, the statement is real and the guy was probably disappeared. But some of twitter's t.co traffic is definitely being intercepted, that much is pretty certain at this point.
Jayden Nguyen
So Julian is a satanist, ok.
Jaxon Cruz
Spookey.
Connor White
Sage this thread.
If JA is not hoffa 2 right now then why nothing but ct. Cucks it's 3 weeks out, this is shit or get off the pot time. This drama is just a distraction and you are spooning it down your throat.
Ayden Hill
...
Eli Diaz
SOMEBODY WITH A TWITTER TELL WIKILEAKS TCIJ.ORG's TRAFFIC IS BEING INTERCEPTED.
John Edwards
Sock it to him, forever, Gavin? -JA? Did Julian ever talk like that?
Lucas Mitchell
...
Ayden Robinson
I can tweet at them who knows if they'll see/respond
Robert Turner
Wouldn't it have to generate something in the canvas tag first?
Ethan Reyes
Wouldn't it be better to email them? Finding someone with a twitter here seems to be as easy as finding an honest man in Tel Aviv.
Ethan Stewart
just logged in to say I don't have a twitter either
Jordan Bell
I see 2 possibilities either their communication chanels are hijacked an an unreachable level and as WL can't afford not to communicate, they can't stop hostiles from sending messages in their name if (((these hostiles))) went too far, WL would send a debunk message and would have to cease using twitter, but this would cause other problems, namely making the key release way more difficul or they've begun sending more noise in their tweets to mask (or allow) the release of codewords to keyholders, so their tweets seem to have changed in tone and style
Jacob Johnson
This might be unrelated, but I noticed wikileaks deleting several twitter posts earlier. Is that normal?
Jeremiah Barnes
dude i don't know. I'm a mechanic, not a script kiddie. I have no idea what I'm looking at except that it stinks to high heaven
Jaxson Cook
i tweeted them a couple times
Zachary Powell
They're similar sites that most likely have the same people involved.
What you're describing isn't enough to say this is a honeypot.
Jack Cooper
bot detekted
Matthew Williams
Team Clinton is getting despite, Trump gets in and a lot of people are going to jail for treason.
Cooper Robinson
Don't think so. I don't think they've ever deleted twitter posts until the past week or two.
Kevin Allen
I wouldn't call it a honeypot necessarily
Maybe the server is compromised somehow? Part of ops against anyone involved with wikileaks who might have the keys?
Connor Green
you're right, they're definitely related. Honeypot is the wrong word for what's going on.
Aaron Garcia
That's what my initial thought was. That some admin who runs both sites jimmied up the cert. Possibility they are bost hosted off the same server / ip. Could be a misconfig, but doesn't really reinforce good opsec for Wikileaks board members (deceased or not).
Andrew Jackson
I just sent @wikileaks a DM on Twitter. Why not.
Nicholas Barnes
There was another thread about this over at cuckchan. They described it as a Man in the Middle Attack (MITM). archive.is/LLbIq
Parker Lopez
They deleted the one where they mentioned the use of ((()))
Adam Parker
Similar activity was happening with an ozzy poster trying to connect to twitter. IC cert. Out of my expertise.
Blake Brown
Confirming that the link has been stripped of HTTPS for me also.
This indicates MITM orchestrated at a state level, no?
Adam Clark
During yesterdays DDOS***
Aiden Smith
If relevant, also connecting via proxy in Australia.
Asher White
you do fucking realize that whatever that green tag is next to all those links is tracking every website you go to reading and sending forwards all links and everything you search is being sent to their servers "for comparison" is stored and can be sold forwards you are giving away everything your browsing
unless you trust your (((antivirus company))) >9000% to not exploit/sell/nasa that info i would uninstall whatever that plugin is
Ryder Moore
Ok, so what are the consequences of clicking on that link?
Ethan Green
Holla Forums here. No, everything is fine. Sometimes web admins are too retarded to setup their certificates which may look like spoof attempts to browsers. It also happens when cert directories fuck up for a given public key.
If this site would be an attack vector, they would have substituted a cert and shat on you instead of what you suppose. Canvas calculation is not always malicious or identifying attempts, depending on how the website was setup. Most (legit) sites use canvas fingerprinting for ads.
Owen Nguyen
Figured it was a misconfiguration. I always figured hardcore MitM attack be nearly invisible to the end client? Still shitty opsec.
Cameron Morgan
It depends. If the logancij.com domain is legit, and the certificate is the same for both domains the admin only made a mistake. But if the certificate is different, or logancij is not owned by the same guy then there's something very wrong.
Benjamin Price
MacFadyen passed away after a short illness on October 22 2016.
WTF, Clinton killed any other person
Leo Jackson
It can be invisible if the attacker has access to a legit CA (certificate authority, the guys who emit the certs). If any of the dozens of CAs your browser trusts gives them a cert you'll access their server, see their cert, it matches, and go your way as if everything was fine. There have been a few cases where CAs either fucked up big time or were doing something shady.
Austin Phillips
I met a guy a while ago at a Bitcoin party that had couch-surfed at Assange's prior to WL becoming a big thing. He said all that shit about Julian being a cunt was bullshit btw. Apparently a really good guy.
I think he also mentioned that he did some campaign work for him. Have hit him with a message to see if he knows anyone that might be able to give more info.
Will let you guys know if I get a response.
Camden Lopez
Make sure you don't post or say anything that breaks opsec - NSA types are hunting down anyone connected with wikileaks who might have the insurance keys.
His affiliation was very loose. He might have someone we can contact though.
Jackson Phillips
it was just an illness silly boys…
fuck, this is too real
Henry Lopez
I saw an old post on Holla Forums about this David Brock chat that was reportedly leaked. Maybe this has something to do with it?
Levi Rogers
I'd like to add that any alphabets reading any of this should defy or defect immediately.
You are betraying your people.
Cooper Cooper
this you fucks, you should be ashamed!
Henry Mitchell
Right now, I think a lot of them are trying to justify it to themselves as doing what needs to be done to keep us out of world war / civil war.
Best of intentions with the worst of results.
Sebastian Martinez
I should add that a fair number are of course sociopaths/psychopaths who don't care so long as they've got money.
Jack Nguyen
...
Elijah Kelly
theres nothing fucky going on IMO
just an idiot admin who runs both sites has the https set with the wrong cert ala he had no intention of having https working on lcij.org but hes copied over the webserver configs from logancij.com
Michael Williams
...
Jason Turner
Your anti-tracking add-on could tell you something, possibly highlight irregularities.
Anthony Brown
No.
I'm pretty sure Assange is dead at this point, and TPTB are maintaining a (poor) illusion he's still alive. Probably completely on purpose to spread confusion on places like 8ch.
The most important thing now is to check the hashes of every email in the leaks from the day Assange's internet was cut onwards. Try and find any fakes that have been inserted or edited emails. If they exist, the next big issue will be proving the releases have been corrupted by alphabet soup before the MSM gets their claws into this.
Adrian Kelly
If they're actually compromised, I fully expect to see completely made up stuff "exposing" Trumps ties to Russia.
Wyatt Taylor
Too obvious. It'd be subtle shit, like that "our supporters are DDOSing the US" tweet.
Mason Ross
I think they've learned their lesson about subtlety, I fully expect they'll do just enough to discredit WikiLeaks as a trustworthy source in the eyes of Joe Public and leave it at that.
Isaiah Foster
Assange went silent so he could distance himself from the whole charade. I have a sneaking suspicion that dare i say it the WHOLE internet is compromised
Xavier Turner
you mean the "joe public" who isn't reading about these leaks in (((msm))) anyway? you mean the "joe public" who can be distracted with internet porn and sportball? go concern troll somewhere else
Jaxson Lopez
Done
Chase Hughes
I think he's enroute to Russia.
Adrian Sanders
(((our supporters))) is how i've been thinking about it
Thomas Harris
this was a "leak" from RealTrueNews, which is notorious for making shit up for clicks
James White
If it was a legit WL post, my thought was that it could be to demonstrate that WL have the capability to black out controlled centers, thus killing alphabet's entertainment/distraction ability.
This is a bit of a stretch though. The post itself is very suspicious.
Angel Adams
the whole internet has been compromised for a while fam
I wouldn't trust an 'official' post on any mainstream social network.
Blake Jackson
I see you're evolving, CTR.
Daniel Thomas
thought you were clever, didn't you, kike?
Jaxon Bell
I'd expect them to put out a bullshit one that's obviously faked. Then MSM "exposes" how wikileaks was caught lying in an attempt to poison the well and discredit all the previous leaks.
Jaxson Perez
Do me a favour and point out where exactly I said that. Oh, that's right. I didn't.
In fact I said the exact opposite, keep reading them and check their hashes for authenticity.
It's really cute how you think if you try to call out shills the way we've done to you for the past year or more people will fall for it. Gotta make sure there's some (((parenthesis))) and a sage in your post, oh and don't forget to call someone a kike!
Or in your own parlance:
Liam Martinez
WEW Your computer is already spying on you faggot.
Adrian Foster
Not to mention sending keystrokes back to Murkysoft.
Charles Anderson
More than dubs…
Luke Smith
Fuck off CTR shills.
Parker Martinez
I have a thread on this already. It's a tool to grab your ip and then hit you with quantum insert. see my thread here: 8ch.net/pol/res/7950054.html#7951268
Gabriel Carter
Actually no, it's a MoTS attack. look up foxacid and quantum insert.
we're fucked.
Aiden Howard
the post, other posts, Assange's radio silence, the timing of, well everything else right now…it would be somewhat interesting if WL's supporters were that 'vocal' about the compromise, but all of it really is just suspicious, like i-got-a-bad-feeling-in-my-gut suspicious, and the coincidences are piling up. gavin macfadyen's passing just today. i don't know. whatever's going on isn't good, and wikileaks is definitely going through some shit right now. this much we know.
Noah Lopez
you don't have to say it out loud counting on Holla Forums paranoia nice reddit spacing btw
Anthony Bennett
I remember the tcig thing from the group that tried to frame Assange as pedophile, let me try to find the post.
Nathan Young
Heard the term alphabet a lot, what does it refer to?
Surely using leaked government hacking tools (typically referred to WMDs of cybersecurity by anyone discussing them, "cyberweapons" at the least) is violating multiple federal laws.
At the very least it would shit down CTR instantly and stop them from ganging up on people.
Luis Phillips
Nervously loading my SKS magazine
James Wilson
...
Robert Rivera
Trump will shut them down when he's president. SuperPACs need to go.
Adam Reyes
its purpose usually isn't to get your IP so no.
Benjamin Brown
Onto the filter list you go.
Matthew Turner
I think it's their way of saying they hope he's in hell. This stuff is incredibly creepy.
Logan Hernandez
MODS BANNED THE LAST user WHO TRIED TO WARN EVERYONE
Careful OP
Jayden Johnson
Unfortunately, not much available on this front.
He's aware of the internet cut, etc, but hasn't heard anything else from anyone direct.
He said he'll let me know if he gets any info.
Dominic Wright
Why can't I find it on the board log?
Leo Ward
Nevermind, I found it. It was the mod Heil.
Jaxon Nelson
Because your mods are dirtier than you think.
Zachary Jenkins
I can understand. People are on edge because of ctr and for all we know the guy that got banned could have actually had a disruptive post history. They hadn't even made the tweet when the thread was made.
Asher Anderson
When do we hang these faggots?
Jaxson Sanchez
Sounds fake.
Julian Campbell
>I'm pretty sure Assange is dead at this point, and TPTB are maintaining a (poor) illusion he's still alive.
That speculation again.
What if you're the one doing that on purpose by claiming Wikileaks is now compromised and we have to "check the hashes of every email" which will probably slow down the process of finding good e-mails? If you think checking the hashes of every email is really important than start a thread specifically about that and then explain clearly what tools we need to do it and how to use them.
Nolan Williams
bump
Connor Thompson
Because the mods are paid shills, faggot. How new are you?
As soon as someone manages to doxx them.
Isaac Reed
Press f Rip ja.
May tdotr come soon
and yea, every mod is a Jew. Whole site is owned by Jews. Just call them kikey if u want unban
Landon Russell
?
Easton Cox
...
Mason Ramirez
He spoke to a conference visit phone just yesterday.
Christopher Baker
for the technically challenged that is
Charles Peterson
At this point it's not really important either way whether they're compromised or not. Act like they aren't as long as they keep hitting Clinton, act like they are if they start hitting Trump.
If they falsify something obviously we already have a working theory on how they got subverted.
Ryder Hill
Which reminds me, where the hell did that Korean sticky go? The one about Choi sun sil and Megalia. Was there with hundreds of replies one minute and gone the next.
Nicholas Turner
Which reminds me, where the hell did that Korean sticky go? The one about Choi sun sil and Megalia. Was there with hundreds of replies one minute and gone the next.
Nathaniel Hughes
Damage controlling faggot.
Henry Lopez
This is a little spooky
Wyatt Peterson
Molenjew mentioned the hoeypot theory with Weiner, which I never even thought of. If you are the FSB (or esp. the Mossad) and this crazed jew is sending dick pictures to any skank who contacts him, and he has access to sec. of state…my fear (but hope) is that Mossad got him and they'll have to tell the world.
Logan Myers
pls fam, the reddit spacing meme is as transparent a d&c as "italians aren't white".