{"id":39174,"date":"2021-01-12T16:04:03","date_gmt":"2021-01-12T16:04:03","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/31919\/Parler-Hacked-As-Attackers-Claim-Access-To-Messages-Locations-And-Raw-Videos.html"},"modified":"2021-01-12T16:04:03","modified_gmt":"2021-01-12T16:04:03","slug":"parler-hacked-as-attackers-claim-access-to-messages-locations-and-raw-videos","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/parler-hacked-as-attackers-claim-access-to-messages-locations-and-raw-videos\/","title":{"rendered":"Parler Hacked As Attackers Claim Access To Messages, Locations, And Raw Videos"},"content":{"rendered":"
\n
\"Far-right\n<\/div>
Far-right social media platform Parler has allegedly been hacked (Picture: Getty)<\/figcaption><\/figure>\n

Hackers are claiming they have gained access to vast amounts of data from Parler, the far-right social media platform, before it was taken down.<\/p>\n

Over the weekend, the Parler app was blocked from both the Android and iOS app stores. <\/p>\n

This was followed by the company losing its website<\/a> after Amazon<\/a> stopped supporting it on its AWS cloud platform.<\/p>\n

But attackers have claimed that before the social media site went down they were able to get hold of information that includes users\u2019 messages, locations and even in some cases their driving licences.<\/p>\n

A self-proclaimed hacker from Austria, known as \u2018Donk Enby\u2019 on Twitter, claimed to have access to all of the \u2018unprocessed, raw\u2019 video files uploaded to Parler \u2018with all associated metadata.\u2019<\/p>\n

\n
\n
\n

These are the original, unprocessed, raw files as uploaded to Parler with all associated metadata.<\/p>\n

\u2014 crash override (@donk_enby) January 10, 2021<\/a>\n<\/p><\/blockquote><\/div>\n<\/figure>\n

Another user on Reddit, known as BlueMountainDace, explained how the hack had been accomplished.<\/a><\/p>\n

\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div>\n

\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div>\n

\u2018A group of developers latched onto the Press Release that Twilio put out at midnight last night. In that Press Release, Twilio accidentally revealed which services Parler was using. Turns out it was all of the security authentications that were used to register a user. <\/p>\n

\u2018This allowed anyone to create a user, and not have to verify an email address, and immediately have a logged-on account.\u2019<\/p>\n

\u2018Well, because of that access, it gave them access to the behind the login box API that is used to deliver content \u2014 ALL CONTENT (parleys, video, images, user profiles, user information, etc) \u2013. But what it also did was revealed which USERS had \u201cAdministration\u201d rights, \u201cModeration\u201d rights.\u2019<\/p>\n

BlueMountainDace then goes on to outline that the attackers were able to zero-in on admin accounts and find content uploaded by those users. In some cases, it included verified users of Parler that had uploaded images of their driver\u2019s licence (and all the personal information contained on it) as proof of identity.<\/p>\n

\u2018Also, a lot of posts were deleted by Parler members after the riots on the 6th. Turned out\u2026 Parler didn\u2019t actually delete anything.. just set a bit as deleted,\u2019 the poster goes on to say.<\/p>\n

\u2018Guess what has access to all \u201cdeleted\u201d content? Administrator accounts.\u2019<\/p>\n

Twilio, meanwhile, has gone on the record to say it had no involvement in Parler\u2019s compromise.<\/p>\n

\u2018With regards to reports of cyber security issues Parler experienced and have been attributed to Twilio, our security team investigated the claims and found no evidence indicating their security issues were related to Twilio or our products,\u2019 Twilio said in a statement provided to Metro.co.uk. <\/p>\n

\u2018Per our website<\/a>, Twilio has not issued any press releases pertaining to or referencing Parler. Furthermore, Parler was using Twilio to send out identity verification codes for new downloads or password resets. <\/p>\n

\u2018Once a user was verified, security protocols were independently handled by Parler and did not involve Twilio or its products. On Friday, January 8th, we sent Parler a letter informing them they were in violation of our Acceptable Use Policy and notifying them that we would suspend their account if they did not make efforts to remediate multiple calls for violence on their platform. <\/p>\n

\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div>\n

\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div>\n

\u2018Shortly after receiving our letter, Parler informed us they had already turned off their integration with Twilio. Any cyber security issues experienced by Parler were completely unrelated to Twilio or any of its products.\u2019<\/p>\n

Parler has landed in the headlines this week as it has has been revealed as the online space where the US Capitol riots were planned. <\/p>\n

And, as such, the information obtained by the hackers (if it were made public, which is what they say they will do) would likely help US authorities track down perpetrators who used Parler to communicate.<\/p>\n

\n
\n
\n

In slightly more technical terms, it seems as though Parler never closed some of their developer-friendly security holes (sort of the programming equivalent of game cheat codes made by devs) and as a result, their anyone with the right knowledge could have admin access.<\/p>\n

\u2014 Matthew Sheffield (@mattsheffield) January 11, 2021<\/a>\n<\/p><\/blockquote>\n<\/div>\n<\/figure>\n

\n
\n<\/div>
Parler has become a hive of far-right commentary following the US election in November (AFP via Getty Images)<\/figcaption><\/figure>\n

Parler calls itself the \u2018world\u2019s town square\u2019 and has been around since 2018. <\/p>\n

It holds itself up as a platform for free speech but has become a place for ultra-conservative users who fled Twitter amid claims of censorship and political bias.<\/p>\n

Parler CEO John Matze complained on his site of being scapegoated.<\/p>\n

\u2018Standards not applied to Twitter, Facebook or even Apple themselves, apply to Parler,\u2019 he said, adding he would not \u2018cave to politically motivated companies and those authoritarians who hate free speech\u2019.<\/p>\n

There is huge speculation that Donald Trump could soon join Parler after his access to Facebook and Twitter was revoked<\/a>.<\/p>\n

Online speech experts expect social media companies led by Facebook, Twitter and Google\u2019s YouTube to more vigorously police hate speech and incitement in the wake of the Capitol rebellion, as Western democracies led by Nazism-haunted Germany already do.<\/p>\n

MORE : What is Signal? The private messaging app is booming after WhatsApp exodus<\/a> <\/span> <\/p>\n

MORE : What is Parler? Far-right \u2018free speech\u2019 app blocked by Google, Apple and Amazon<\/a> <\/span> <\/p>\n

<\/p>\n

\n
\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div>\n

\n

\nAdvertisement<\/span><\/span>\n<\/p>\n<\/div><\/div>\n