top | item 46932330

(no title)

parable | 23 days ago

I'm fairly sure even mentioning the name of the forum isn't allowed on HN. It should be trivial to find it yourself, though. I also replied to someone else with the CSV headers if you're only trying to find out what exactly was included in the leak: https://news.ycombinator.com/item?id=46932380

Also, keep in mind that this is a partial leak. The data was scraped from some leaky endpoint which was patched out before every user could be scraped. Only users who were in the partial leak received emails (I have two accounts, only one received an email). If you're a Substack user but didn't receive an email, I'd assume you're not in the leak. Troy Hunt should load it into HIBP eventually, and those concerned can check there if they don't want to seek the leak out on their own.

discuss

shawabawa3|22 days ago

>I'm fairly sure even mentioning the name of the forum isn't allowed on HN

Well let's find out

I did a tiny bit of research, pretty sure it's BreachForums (https://en.wikipedia.org/wiki/BreachForums)

direwolf20|22 days ago

BreachForums was shut down

chrisjj|22 days ago

> this is a partial leak.

Substack PR probably love this. Like a gas tank has a partial leak.

parable|22 days ago

This is actually a great analogy for why companies should take small data leaks seriously. A leak is a leak.

Also, to clarify, I don't mean to appear as though I'm discrediting this leak or downplaying its severity. I only mentioned that it was a partial leak to offer an explanation as to why some users received emails and others didn't, as witnessme's comment seemed confused about this.

squigz|22 days ago

> I'm fairly sure even mentioning the name of the forum isn't allowed on HN.

I'm not sure this would be the case? I've seen plenty of links to content of questionable legality shared on HN.