We got hacked earlier this evening, causing us to lose all of the pledges we gained since the last database backup (and thank the gaming gods I even had the wherewithal to make that backup). Oh, and I suppose I should say we got hacked again. See, this has been a daily battle for us. Here’s the back story.
Before the site had officially launched, and through means I still don’t understand, word about GAB got to Wil Wheaton, who blogged about the pledge and “launched” us overnight, racking up the first few hundred pledges and thousands of visitors to the site. I’ll refer to this as the point of no return, because GAB became a thing, whether the site was ready for it or not.
With the first 200 pledges, came a half dozen hackers finding different ways of exploiting the pledge. For the past few weeks, this has continued, and the number of attempted and completed hacks has increased into the hundreds. Attacks have ranged from the simple (making grotesque images pop up in the signatures page, as you see below) to the elegant (making it impossible for new pledgees to sign), but all of the attacks had a few things in common: they were expected, they were childish, and they were temporary and easy enough to fix.
VERY NSFW/TRIGGER! HOVER TO VIEW THE HACKED SIGNATURES PAGE AT YOUR OWN RISK:
But tonight that all changed.
I finally figured out how to code a preventative measure to all the exploits that had been happening, so I released an update the site and thought I was done swatting all the annoying mosquitos and would finally be able to focus my time more productively. I was wrong.
Apparently my fighting back by increasing the security provoked the hackers to up their game as well. Within an hour came another attack on a new level, obliterating the core of the site by deleting the database holding all the pledges and dropping our score from 1500 to zero. Very sad.
While I was able to recover some of the pledges thanks to an incomplete backup, any attempts I’ve made to restore the site have been met by repeated attacks and takedowns, effectively silencing me and the 1500 people who have signed the pledge.
I’m asking that instead of signing the pledge, folks take to indiegogo and support our project, giving us the ability to improve the site and fight back against these misguided children. As a fan on Facebook said, “they need the IndieGoGo – they’re going to need the level of security you normally find at research corporations just to stay afloat with the savage attacks they’re going to receive.”
You can also show your support by sharing the image below.
We’re trying our hardest to get the pledge up and running as quickly as possible, but we appreciate your patience and support. We’re not going to give up, or even be dissuaded by these attacks. If anything, they have hardened our resolve: it’s more clear now than ever that this organization is needed.
Gamers Against Bigotry