- Joined
- Nov 14, 2012
Featured on Mar 8, 2023 by Null: Chudbuds was hacked and some people have egg on their face. Are YOU practicing proper cyber-hygiene‽
Hello again friends. It's me again here to remind you to not be retarded.
An e-drama adjacent website, chudbuds.lol, was recently hacked. The operator ran a Minecraft server and she installed a mod from Mediafire that a bad actor had given her. The mod's malware payload appears to have downloaded all browser information (such as stored passwords) which resulted in not only chudbuds.lol being hacked, but the owner's personal emails and much of her personal information (including nudes, tax returns, and more).
The users of the site had their email addresses and private messages leaked. Many of their users did not practice good digital hygiene, including some users who have used work and educational emails. Now is a good time to review your privacy.
Both of these sites are good resources. There is a heated dispute between the two operators, but both provide good information.
www.privacytools.io
www.privacyguides.org
The most important thing is your behavior. Do not be a retard. This user offered to host a Kiwi Farms minecraft server almost immediately after the chudbuds hack. Byuu decided it'd be funny to give him the malware mod. The user downloaded it off mediafire and ran it, which means the hacker probably has access to his shit too.
Do not run any software coming from a source you do not trust. Mediafire is not a trustworthy source. No random user of this website is either.
Use a password manager. You want a good one, which is open source. BitWarden is considered the best. If you use LastPass, you should migrate to another.
www.privacyguides.org
www.privacytools.io
Your main password should be something very long. Use a passphrase, not a password.
You should also be using 2fa everywhere you can. It's annoying, but the information that was not hacked from Clairebere was protected by 2fa. BitWarden has TOTP, but only if you have a premium subscription.
https://www.privacytools.io/secure-password-manager (scroll down)
www.privacyguides.org
You should compartmentalize your identities so that if your main email is leaked, you are not super-doxxed. There is a new kind of technology called email forwarding which simplifies this a lot. Protonmail provides access to SimpleLogin. There is also AnonAddy, and FireFox relay.
www.privacyguides.org
Email is inherently insecure. It is almost never encrypted, and what is encrypted is only the body and attachments of the mail, not any meta data. However, many services provide encryption for email stored on their servers, which provides a layer of security against hacks and law enforcement intrusions that mainstream services like Gmail / Hotmail / Yahoo / GMX do not provide.
www.privacyguides.org
www.privacytools.io
Finally, IPs are the least important part of a dox. They can rarely be used against you. A VPN is nice to have, but it is not the end-all, be-all of security that many people think it is. You should learn what a VPN can and cannot do before thinking having one will protect you.
www.privacyguides.org
www.privacytools.io
Here is more information on Tor, which does help more, and which we provide a hidden service before. Tor is not always allowed on all networks, so VPNs still help.
www.privacyguides.org
medium.com
F.A.Q. from retards arguing in this thread
1. How are password managers safer than a pen and paper?
Good password managers are open source and audited (i.e. not LastPass). Encrypted vault content will take longer to decrypt than you will be alive to deal with the fallout. They can generate the most secure passwords possible, keep track of all of them, and run no risk of being destroyed physically. Their ease of use encourages using truly unique and secure passwords more often.
2. Isn't storing these online dangerous?
No, not really. The end-to-end encryption prevents anyone who intercepts the password vault from being able to read its contents.
Not all password managers use online vaults. BitWarden lets you set up your own server to store there, instead of on theirs. However, remote password vaults provides one benefit over local: 2fa. With 2fa, having the master password alone does not decrypt the vault.
3. ProtonMail is COMPROMISED!!!
Proton AG in Switzerland responds to Swiss court orders and releases such compliance in their transparency reports. Their policy of transparency has caused a meltdown, claiming they are compromised and work directly with 'the feds' (implying US federal government or 5 Eyes). They turned over an IP address after receiving a Swiss court order. All services do this.
Google receives hundreds of thousands a year and does not encrypt any user data.
transparencyreport.google.com
An e-drama adjacent website, chudbuds.lol, was recently hacked. The operator ran a Minecraft server and she installed a mod from Mediafire that a bad actor had given her. The mod's malware payload appears to have downloaded all browser information (such as stored passwords) which resulted in not only chudbuds.lol being hacked, but the owner's personal emails and much of her personal information (including nudes, tax returns, and more).
The users of the site had their email addresses and private messages leaked. Many of their users did not practice good digital hygiene, including some users who have used work and educational emails. Now is a good time to review your privacy.
Both of these sites are good resources. There is a heated dispute between the two operators, but both provide good information.
Best Privacy Tools & Software Guide in in 2023
The most reliable website for privacy tools since 2015. Software, services, apps and privacy guides to fight surveillance with encryption for better internet privacy.
www.privacytools.io
Home
Privacy Guides is your central privacy and security resource to protect yourself online.
www.privacyguides.org
The most important thing is your behavior. Do not be a retard. This user offered to host a Kiwi Farms minecraft server almost immediately after the chudbuds hack. Byuu decided it'd be funny to give him the malware mod. The user downloaded it off mediafire and ran it, which means the hacker probably has access to his shit too.
Do not run any software coming from a source you do not trust. Mediafire is not a trustworthy source. No random user of this website is either.
Use a password manager. You want a good one, which is open source. BitWarden is considered the best. If you use LastPass, you should migrate to another.
Password Managers - Privacy Guides
Password managers allow you to securely store and manage passwords and other credentials.
www.privacyguides.org
Best Free Password Manager & 2FA Tools in 2023
Find the best free password manager and two-factor authentication tools to secure your online accounts. Easy to use, free to download.
www.privacytools.io
Your main password should be something very long. Use a passphrase, not a password.
You should also be using 2fa everywhere you can. It's annoying, but the information that was not hacked from Clairebere was protected by 2fa. BitWarden has TOTP, but only if you have a premium subscription.
https://www.privacytools.io/secure-password-manager (scroll down)
Multi-Factor Authenticators - Privacy Guides
These tools assist you with securing your internet accounts with Multi-Factor Authentication without sending your secrets to a third-party.
www.privacyguides.org
You should compartmentalize your identities so that if your main email is leaked, you are not super-doxxed. There is a new kind of technology called email forwarding which simplifies this a lot. Protonmail provides access to SimpleLogin. There is also AnonAddy, and FireFox relay.
Email Services - Privacy Guides
These email providers offer a great place to store your emails securely, and many offer interoperable OpenPGP encryption with other providers.
www.privacyguides.org
Email is inherently insecure. It is almost never encrypted, and what is encrypted is only the body and attachments of the mail, not any meta data. However, many services provide encryption for email stored on their servers, which provides a layer of security against hacks and law enforcement intrusions that mainstream services like Gmail / Hotmail / Yahoo / GMX do not provide.
Email Services - Privacy Guides
These email providers offer a great place to store your emails securely, and many offer interoperable OpenPGP encryption with other providers.
www.privacyguides.org
Best Privacy Email Accounts & Clients in 2023
Protect your email communications with the best privacy-focused email accounts and clients. Keep your data safe and secure. Learn more.
www.privacytools.io
Finally, IPs are the least important part of a dox. They can rarely be used against you. A VPN is nice to have, but it is not the end-all, be-all of security that many people think it is. You should learn what a VPN can and cannot do before thinking having one will protect you.
VPN Services - Privacy Guides
These are the best VPN services for protecting your privacy and security online. Find a provider here that isn’t out to spy on you.
www.privacyguides.org
Best VPN for Privacy & Security in 2023 - Top 5
Looking for the best VPN for online privacy and security? Check out our top list of the most reliable and effective VPN services available.
www.privacytools.io
Here is more information on Tor, which does help more, and which we provide a hidden service before. Tor is not always allowed on all networks, so VPNs still help.
Tor Network - Privacy Guides
Protect your internet browsing from prying eyes by using the Tor network, a secure network which circumvents censorship.
www.privacyguides.org
Slicing onions: Part 1 — Myth-busting Tor.
The Tor network is an anonymity system designed to protect the privacy and anonymity of its users. Unlike a VPN service, Tor is both free…
medium.com
F.A.Q. from retards arguing in this thread
1. How are password managers safer than a pen and paper?
Good password managers are open source and audited (i.e. not LastPass). Encrypted vault content will take longer to decrypt than you will be alive to deal with the fallout. They can generate the most secure passwords possible, keep track of all of them, and run no risk of being destroyed physically. Their ease of use encourages using truly unique and secure passwords more often.
2. Isn't storing these online dangerous?
No, not really. The end-to-end encryption prevents anyone who intercepts the password vault from being able to read its contents.
Not all password managers use online vaults. BitWarden lets you set up your own server to store there, instead of on theirs. However, remote password vaults provides one benefit over local: 2fa. With 2fa, having the master password alone does not decrypt the vault.
3. ProtonMail is COMPROMISED!!!
Proton AG in Switzerland responds to Swiss court orders and releases such compliance in their transparency reports. Their policy of transparency has caused a meltdown, claiming they are compromised and work directly with 'the feds' (implying US federal government or 5 Eyes). They turned over an IP address after receiving a Swiss court order. All services do this.
Google receives hundreds of thousands a year and does not encrypt any user data.
Google Transparency Report
Last edited:
