Various “news” sites have reported that EA, Nintendo and Sony have dropped their SOPA support, though they’ve never published a press release about it and they weren’t even on the official list of SOPA supporters, Techdirt explains what caused this error.

So they don’t support SOPA? No, they do support it, as they’re all members of the ESA (Entertainment Software Association) which supports SOPA as can be seen in the official list of supporters (Mirror).

If you want to check whether a tech company is supporting SOPA don’t forget to look at the list of members of the ESA and the BSA (Business Software Alliance) who also support SOPA.

A security advisory was released yesterday detailing a denial-of-service vulnerability that most of the web could be affected by.

The vulnerability lies in the hashing algorithms used by a variety of programming languages (including Python, Ruby, PHP and Java). When collisions happens these algorithms will take up large amounts of CPU cycles to deal with them (From what I understand).

To give you an idea of the extent of this problem I’ll quote the PDF linked in the advisory, take for example PHP:

On an i7 core, the 60 seconds take a string of multi-collisions of about 500k. 30 seconds of CPU time can be generated using a string of about 300k. This means that an attacker needs about 70-100kbit/s to keep one i7 core constantly busy. An attacker with a Gigabit connection can keep about 10.000 i7 cores busy.

Or Ruby:

A typical POST size limit in Ruby frameworks is 2 MB, which takes about 6 hours of i7 CPU time to parse. Thus, an attacker with a single 850 bits/s line can keep one i7 core busy. The other way around, an attacker  with a Gigabit connection can keep about 1.000.000 (one million!) i7 cores busy.

This allows someone to take down almost any webserver with (very) limited resources. Possible workarounds are: limiting CPU time, limiting the POST size, or limiting the maximum amount of POST variables.

I’m currently waiting for the first PoCs and exploits to be published and will post an update when I get my hands on one (Which will also confirm if I understand the exploit correctly).

Update: I can see how this will ruin your day

Update 2: Go here for an easy to understand explanation.

GoDaddy has seen a massive amount of domains being transferred away from them as customers are moving elsewhere because of their support for SOPA. Among the companies transferring are Wikipedia and the Cheezburger Network (Who own over 1000 domains). It all took off when a GoDaddy boycott was started on Reddit. Various other domain registrars are even offering discount codes for anyone transferring to them.

Just today (The 25th of December) the counter is standing on 28,656 domains transferred out as seen on DailyChanges, and the amount just keeps climbing, day after day more and more domains are being transferred away.

GoDaddy has now retracted their public support for SOPA but the damage has been done, not to forget that they helped write SOPA, not just support it. I have no idea how long this will keep going and how many people will move away but it’s gonna hurt (It’s already hurting actually). GoDaddy is even begging for people to stay.

I’m sure more companies will face the wrath of the public because of their SOPA support, and various companies are already retracting their support for it, some companies never even explicitly supported SOPA “they agreed with Floyd Abrams’ analysis of SOPA. That’s it. They didn’t say their firms supported SOPA”.

Merry #LulzXmas to everyone http://imagebin.org/190224 Stratfor rooted. All your base are belong to us. <3 #Anonymous

This tweet just went out from the @AnonymousIRC Twitter account (First occurance of the tweet I could find), a mirror of the defacement can be found on Zone-H. The Stratfor website is down as I write this.

Stratfor is a large private intelligence corporation having fortune 500 companies and international intelligence agencies as their clients (source). A full list of clients can be found here.

Edit: there’s also this:

Over 90,000 Credit cards from LEA, journalists, intelligence community and whitehats leaked and used for over a million dollars in donations

- By @AnonymouSabu

So one million dollars from compromised credit cards, from what I can understand of later tweets they only used corp execs credit cards, who wont feel it that hard in their pockets, but not sure if I’m very fond of this action.

The Video Posted

‘Twas the night before Caturday, closed were the pools
Vids of Saint Rickrollas posted by trolls
I, in my Guy Fawkes mask, her, licking my sack,
Had decided to hate people of skin coloured black
I heard a loud CRASH and put down my liquor
Was our home being robbed… by a nigger?
I threw open the door and who should I see
But Raptor Jesus eating a baby
Sweet Raptor Jesus, the Almighty Reptile
Was clutching an uzi, looking hostile
“O Raptor Jesus!” I fell to my knees
He undid his pants and yelled, “Bitch, suck on THESE!”
Within moments his sacred love juice came a-gushing
But it was not gay, for our balls were not touching
“Where is your god now?” he said with a grin
Blessed dino spooge dripping from my chin
“I don’t GIVE gifts,” he explained to me
“I offer a system of barter, you see”
He did up his pants and pulled out a bag
Full of win, torrents, and hentai mags
Pedobear plushies! Codes that trip!
/d/elicious caek! Handmade Mudkips!
He gave me my gifts: a bottle of lube
And a Weighted Companion Cube
“Your girlfriend,” he asked, “Is she hot?”
She appeared in the doorway; he yelled “JACKPOT!”
He stretched out her vag, once tight and narrow
in exchange for copypasta with oregano
We smiled and waved as he went on his way
Knowing that, in nine months, my girlfriend would pay
As he ventures through the night, Raptor Jesus sings
“This is why we can’t have nice things.”

- Credits go to whomever wrote this fine piece of art.

A while ago there was an article posted about a 6yo boy being charged with “sexual assault” of a 5yo girl.

They were playing doctor, he, the girl and her brother. The mother says she found her daughter with her skirt and underpants around her ankles and the boy sitting underneath her penetrating her with his finder. Yet the girl herself says he only touched her on the outside of her body. There’s also an unconfirmed claim that would explain why the boy saw this as “What doctors do”, as that he apparently had some sort of (ongoing) medical condition that required rectal examinations.

This all is blown out of proportion thanks to the girl’s father being some kind of well known political figure in Grant County. Perhaps someone went powermad and this is the result.

Although the boy, now 7, is too young to be prosecuted or named in a juvenile delinquency petitition, Madison.com reports, county officials are using the felony charge to force his parents into accepting “protection or services” for him. The lawsuit says that once he turns 18, he will be listed as a sex offender.

Apparently the person prosecuting has a severe lack of logical reasoning, not only is this kid way too young to even know what sexual assault is but is now also psychologically damaged thanks to this whole ordeal.

The boy, who is now 7 and has a developmental disability, has been diagnosed with stress disorders that medical professionals attribute to the defendants’ actions, according to the suit. He has experienced fear of going to jail, as well as anxiety, depression, sleepless nights, vomiting, crying and missed school time.

Luckily the boy’s parents are suing and trying to get Lisa Riniker (The D.A. that charged the boy) dismissed from her position as D.A, plus to dismiss any charges against him.

Sources/Links:

• Long detailed article about this case and the counter-case
• Brief article of the parents suing the D.A.
• Summary/Overview on the SomethingAwful forums

I myself was unfortunately late to the party for the initial battle, this due to it starting at 6AM in the morning and me having to work, but here’s what I’ve been able to gather.

HOIC (High Orbit Ion Cannon) attacks were started on the main site but proved to be unsuccessful, after a while SlowLoris was suggested which was used on the 9GAG store with success, taking it down for an hour.

Joining and voting were turned off shortly after the attack started, so we lost that method of attack.

Note that this was only the initial strike, plans are being forged and executed as we speak, this isn’t a one-shot operation, this is an extended campaign.

Join us on irc://irc.anonops.li/op9gag

Update: The 9GAG store has been taken offline completely, the link is removed from the website and its URL apparently also redirects to their main website.

TotalBiscuit explaining SOPA in an easy to understand way, big thanks to him for making this.

A list of the Skyrim mods I am currently using, I will periodically update this as mods get added/removed.

Balancing/Tweaks

Crafting/Related

Graphics

Other

Apparently I have become an interesting enough target to be doxed, by some guys calling themselves BR1CKSQU4D, as seen below:

------
Xeross
------
Dox:
    Name: Justin Brunk
    Born: December 2nd 1992
    Location: Noord-Brabant, Netherlands
    E-Mail: trutherton@wehaslinks.com

Computer:
    IP: 94.210.96.100 (5ED26064.cm-7-3b.dynamic.ziggo.nl)
    OS: Fedora

Profiles:

http://twitter.com/Xeross

http://twitpic.com/photos/Xeross

http://stackoverflow.com/users/327687/xeross

http://www.youtube.com/user/Xeross

http://steamcommunity.com/id/xeross155

Sites:

http://theelitist.net/

Notes:
    Gay furry programmer (literally) that wears Guy Fawkes masks to parties
    Still plays pokemon on gameboy
    Writes WoW fanfiction ( http://theelitist.net/the-battle-for-undercity )
    Dox confirmed by reddit, website

- Source

This was posted quite a while ago (1-2 months I think), but I didn’t have the time to write a response.

Now they’ve been moderately accurate, but I can’t help but feel for the poor sod(s) whose name/email address was used in this document. The name Justin Brunk was obtained from the YouTube account Xeross which as you might’ve guessed isn’t me, I’ll help them along a bit by pointing to my Youtube Account.

Next up, the email address I have no idea where they got that from, perhaps they wanted to bother whomever is managing WeHasLinks.com. Also interesting is that they deem Reddit a reliable source for dox.

The last discrepancy there is to point out is that I supposedly wear Guy Fawkes masks to parties, I don’t, the photos they’re talking about were of some guys we ran across at Reverze  2011 who indeed did wear Guy Fawkes masks.

Anyway, thanks for the laugh BR1CKSQU4D, try harder next time

~Xeross the gay furry programmer