Controversial online forum Kiwi Farms has reportedly been hacked, with the user details of some accounts leaked as a result.
The site, which describes itself as a “community dedicated to discussing eccentric people who voluntarily make fun of themselves,” has had an extremely muddy history since it was founded in 2013, being linked to at least three suicides and the shooting in Christchurch Mosque in 2019 in New Zealand.
Kiwi Farms has struggled to find support within the tech industry, with cloud hosting infrastructure companies Cloudflare and DDoS-Guard recently choosing to stop providing their services to the site, causing it to be overrun by DDOS attacks.
What actually happened?
Joshua Moon, the actual manager of the website said in a announcement (opens in new tab) that “a bad actor was able to upload a web page disguised as an audio file” to XenForo using the lossy .OPUS audio encoding format.
ZenForo is a commercial Internet forum software package used to build forums such as Kiwi Farms
According to Moon, the attacker was then “able to load this web page (probably as an inline frame), causing random users to make automated requests and send their authentication cookies off-site, allowing the attacker to use it to access their account”.
Moon added; “Once they had access to ACP, they tried to download user data, and XenForo provides a way to export user lists with information that is accurate: email, username, last activity, registration date, user state (banned/unverified), post count, and if they are staff.”
The hackers’ requests “did not appear to go through because they requested too many records at once,” according to the administrator.
Moon admitted that his own administrator account “was compromised through this mechanism”.
Kiwi Farms’ statement on the matter said all users should assume their passwords have been stolen
In addition, users should assume that their email addresses have been leaked and they should also assume that any IP they have used on their Kiwi Farms account in the last month has been leaked.
- Want to keep your organization secure? Check out our guide to the best firewalls