The latest social network for those who hate cancel culture also appears to have several glaring security holes.
Launched on 4th July (because of course it was), GETTR is the brainchild of former spokesperson for Donald Trump, Jason Miller.
The social network is very much a clone of Twitte,r but it appears the developers didn’t take the same security measures as Jack Dorsey and his team did. We say this because according to a report from Motherboard, GETTR has been breached.
A database containing email addresses, usernames, statuses and locations of users is currently available on an undisclosed forum.
This data appears to have been acquired by taking advantage of poor API implementation. Following a few tests from Motherboard, it appears the database is legitimate.
The breach is more than just a headache for GETTR as it may now have to rope authorities and regulators in to investigate the breach.
“When threat actors are able to extract sensitive information due to neglectful API implementations, the consequence is equivalent to a data breach and should be handled accordingly by the firm and to be examined by regulators,” Alon Gal, found of cybersecurity firm Hudson Rock, told Motherboard. Gal discovered the GETTR database on the aforementioned forum.
But this database is only one of GETTR’s problems right now. On its launch day GETTR was hacked and several accounts were defaced. Then there was the Sonic the Hedgehog pornography that was spammed throughout GETTR’s launch.
There’s also the matter of content moderation. While GETTR is all about that First Amendment (a part of the US constitution which protects the freedom of speech, freedom of the press, freedom of assembly and freedom to petition government about grievance) it does have some lines you can’t cross. Those lines are detailed in section 2 of the GETTR terms of service.
We won’t go into the full terms but we have to point out this section:
“Without limitation, we may, but do not commit to, do so to address content that comes to our attention that we believe is offensive, obscene, lewd, lascivious, filthy, pornographic, violent, harassing, threatening, abusive, illegal, or otherwise objectionable or inappropriate, or to enforce the rights of third parties or these Terms or any applicable Additional Terms.”
We really hope a breach affecting 85 000 users offends GETTR because this really is obscene for a social network that launched three days ago.
[Image – CC 0 Pixabay]