New Video from @seytonic Highlights Recent Hacking Events and Online Security Challenges

The video begins with an update on the status of 4chan following a devastating hack. The site, often described as the "Internet's favorite cesspool," is in the process of rebooting. The hack occurred on April 14, leading to the site's shutdown and the departure of 19 volunteer janitors and one moderator. Leaked emails from 4chan's moderation team reveal a critical situation, with doubts about the site's continuity. Despite celebrations from some tech journalists, it is important to note that the hack was perpetrated by users of a rival site, which is equally problematic. Recent developments include the deprecation of the Fboard, dedicated to flash games and animations, likely for security reasons. It was also revealed that 4chan was running on two old Dell servers from 2010, with an outdated version of Ghost Script, which facilitated the exploitation of vulnerabilities. The hackers were able to upload a malicious postscript file disguised as a PDF, exploiting a flaw in Ghost Script. This situation highlights the lack of updates and modernization of the site, both technically and in terms of security. Another topic covered is the hacking of Troy Hunt, the owner of Have I Been Pwned. Hunt fell victim to a sophisticated phishing attack that compromised the personal details of 16,000 subscribers to his newsletter. The attack exploited a combination of jet lag fatigue and a convincing phishing email mimicking Mailchimp. Hunt was redirected to a clone site where he entered his credentials and 2FA code, allowing the attackers to export his mailing list. This experience underscores the importance of passkeys, a more secure authentication method that could have prevented this attack. The video highlights several important technical points. For example, passkeys only work on authorized domains, thus preventing phishing attempts even if the user is convinced of the site's authenticity. Additionally, the video explains that when you unsubscribe from a mailing list, your email is not deleted but added to a marketing suppression list, which can have implications in case of a hack. The practical implications of these insights are significant. For users, it is crucial to remain vigilant against phishing attempts and adopt more secure authentication methods like passkeys. For businesses, regular system updates and the adoption of modern security practices are essential to prevent exploitable vulnerabilities. In conclusion, the video provides a detailed overview of recent events in the world of hacking, highlighting the challenges and possible solutions to improve online security.