MySpace Private Pictures Leak 405
Martin writes "We all heard about the MySpace vulnerability that allowed everyone to access pictures that have been set to private at MySpace. That vulnerability got closed down pretty fast. Unfortunately though (for MySpace) someone did use an automated script to run over 44,000 profiles that downloaded all private pictures which resulted in a 17 Gigabyte zip file with more than 560,000 pictures. The zip file is now showing up on popular torrent sites across the net."
Legality of downloading this? (Score:1, Interesting)
I want to grab it myself actually. I'm being serious when I say it's to check to see if anyone I know might need to be concerned some of their pictures are now in the wild. I just know some of them are stupid enough to put up stuff they should not have.
Re:Trap! (Score:3, Interesting)
Re:Trap! (Score:1, Interesting)
Can't find article (actually can find some references, but can't find actual article, hey found a Register [theregister.co.uk] reference) of a 15 year old who took photos of self, then posted them, and got charged with child porn. That person got charged with both possession of child porn, as well as distribution of child porn.
So in this case, person who took photo, myspace, seeders and lechers all would have problems (possession or at the very least distribution for every one except maybe some jerk lechers).
Re:Solution: (Score:3, Interesting)
With underage kids able to post whatever photos they want without moderation, it needs to be, though. If myspace can't hold their shit together with this then they're going to either have to start moderating photos somehow, start verifying ages somehow, or not allow youngin's to join at all. I doubt any of those is particularly palatable with them, but really this is just a consequence of appealing to the super-young crowd anyway. It's become a haven for all manner of shadiness.
Re:Trap! (Score:5, Interesting)
Re:Dueling compression algorithms (Score:5, Interesting)
The
Re:Static Content Server (Score:3, Interesting)
It's not a big deal in the case of MySpace and Facebook; the images are randomly-enough named that I don't think anyone's figured out the scheme (if there is one). Basically all it does is let you and your friend trade images of people one of you already knows, which isn't too bad considering that anyone who posts images anywhere on the internet with any expectation of privacy is pretty silly to start with.
However, in Photobucket (which is insecure in general; they still store plaintext passwords amongst other issues), which doesn't rename uploaded images, it results in an amusing hobby called "fuskering" where common image sequences (i.e DCIMxxxx.JPG, etc.) can be sequentially requested from a user's account until one matches.
Re:Trap! (Score:3, Interesting)
Re:Trap! (Score:1, Interesting)
Except that "child pornography" definitions do not correspond with ages of consent. Thus you have the really daft situation where people can consent to sex (in some cases with anyone of any age) but any photographs/videos of their perfectly legal activities are illegal.