Please try to stop you to leave the log of 2ch damage is concentrated. Please never do the resumption of service mask of time stamp to complete all. Please mask the timestamp of up to 7 / 14-8 / 11 corresponding period in the 2ch server.
Let me give you some example of the cases that posters' anonymity must be protected.
- A person who confessed his/her disease, such as being HIV positive but doen't want let peple around him/her know that.
- A person who wrote he/she is gay on 2ch, but hasn't come out that to his/her family, friends or colleagues.
- A person who wrote his/her company's confidential information. If the name of his/her company is known, his/her company would suffer enormous damage.
- A person who wrote his/her physical complex in detail.
These kinds of cases can be found outside Pink Channel, on every board, every thread. If you have 2ch past log available, these people's privacy would be easily abused. Malicious users are certainly minority, but they DO exist. There won't be no surprise if some of maru users get exposed to blackmail or harassment.
Needs of victims is straightforward Please mask the time stamp in the same way as pink server, the log of 7/14-8/11 in 2ch server Please stop the resumption of ● If you can not it
Thank you for discussing with us when you are busy. I wrote many delicate, private things on 2ch threads. Could you kindly delete the time stamps of the period, please?
Jimさん 私たちはタイムスタンプ・IPの削除を要求します。 対策まではサービスを再開しないでください。 これは有料会員からのお願いです。 心あるお返事をお待ちしています。 ------------------------------------------------------------------ Jim-san. We request the removal of the time stamp and IPAddress. Please do not attempt to restart the service until measures. This is the wish of the paid membership. We are looking forward to your reply in mind.
>>4 Do you have any idea about the compensation to Maru users, for the service outage of over 2 weeks? If yes, when and how? Please kindly let us know your thought.
Jim-san. We request the removal of the time stamp and IPAddress. Please do not attempt to restart the service until measures. This is the wish of the paid membership. We are looking forward to your reply in mind.
I agree with you're saying adult conversations are sensitive. but conversations about various topics CAN be sensitive and critical problem to one's life.
Because of 2ch log, me and my familiy's life is in danger. Please consider removing timestamps on humanitarian grounds.
Jim-san, and UNEI-san. Let them at least hide timestamps from past 2 months open logs before maru restart. Certainly, evil people who search maru user's privacy actively is minority group. But they can easily break maru user's lives. Unfortunately, there are evil persons who search maru user's logs for exposing user's data now. They make web tools such as shown below. (ttp://2chleaks.ml/) Active and evil people is acting to destroy the maru user's lives still now.
Maru users are victims of the leakage. It is unreasonable that victims receive further damage.
Would someone show me the thread for 2ch reader developers? I only found one from a long time ago on jbbs. http://jbbs.livedoor.jp/computer/351/ I have information to give to the developers.
People are making a site that align the log of 2ch and personal information and credit card away. After maru service has been resumed, the damage will be something even more serious. Please stop the resumption of maru service until the mask the time stamp.
News death threats aimed at maru victim already occurred has come out.
>>45 I would be happy to talk to the UNEI, however they are anonymous people. I am clueless to who they are. Currently Codemonkey, my office here in the Philippines and myself are working to fix all the problems that anonymous people have done over the years.
Those who received a phone call and e-mail threats will have to contact the police already, damage will increase in the future. Some people are making a site that combines the log of 2ch name and address now now. After trying to restart the maru remains now, more severe damage of the increase is obvious. victim of maru is not relief at all. Please stop the resumption of the remains are not masked time stamp.
>>50 According to the police they have already done everything that is neccessary. I doubt that any help from your police will come. Do you know what the police intended goal is?
"Since we have achieved our intended goal, "
Dear Watkins-san,
I would like to first apologize for my late reply.
We have not yet received the file you have sent the other day. Our engineer says that he has removed the size limit of our mail server; however, it seems that our fire wall system automatically rejected the file.
As we told you before, the reason why we asked you for the information is to prevent second damages such as abuses of credit card information for being occurred. We already passed the credit card information leaked in the Internet to the Japanese credit card organization, and requested them to take measures to prevent second damages. Since we have achieved our intended goal, it is not necessary for you to send the file anymore. (We thank you for your tries)
In addition, we heard that you have been requested by US authorities not to share information directly with foreign police agencies. If we continue exchanging information against US authorities’ intention, it would develop into unnecessary troubles in the future. We therefore would like to keep from exchanging information hereafter.
We heard that the FBI had contacted you, so it would be recommendable to ask the FBI how to file official complaints about the case.
We thank again for your kind assistance.
Sincerely yours,
Mitsuharu TSUDA Assistant Inspector Cyber Crime Control Division, Tokyo Metropolitan Police Department Tel:+81-3-3581-4321 (ext 7850-3045)
We have some basic questions to you about this time's cyber attack on your server by someone Japanese.
1, Why did the file (that contained all the unencrypted digit of the credit card numbers and security codes from the customers who finished paying) existed on your server?
2, Why did your company (in spite of an external company of 2ch) have the 2ch log files (that contained threads written by the customers who finished paying) on your server?
3, Why did your company (in spite of an external company of 2ch) have the unencrypted file (that contained zip codes, phone numbers, address, full name, same as credit card case) on your server?
>>58 I have the ability, I would like to talk with someone from the UNEI before I do so. However, I don't know how to contact them. Also. I am not certain it would be of any help.
If you cannot contact UNEI, please do not have maru live yet, never, please. This is an emergency. Many people who cannot write in English are pleading you.
The FBI police in Japan so as not moving, you can only ask to Jim's. Delete the post date and time of (both live and archive) log 2-channel of the target period. I ask at the thought that it is helping others. The victim is 40 000 people. I need your help.
Jim-san Please mask the time stamps. I didn't buy Maru. But my credit card number and my personal data were used by my family. Why is this happening to me? PLEASE HELP US.
I am waiting for an answer from my email to UNEI. My concern is that doing it might disrupt some other system that 2ch is using. I don't intend to turn the new ロッカー system on for 2ch until the timestamps are removed.
We want you to believe in your words. Time stamp of the log of the period of 7/14-8/11 in the 2ch until the server is mask Do not attempt to restart the maru please. What (UNNEI) Operations may say.
In these three weeks, some malicious identification tools were created based on outside past log site. Ask a log site operator in the past each time; of the processing of the past log asked. There was some effect in this.
But it is temporary correspondence, and all past log sites say that they imitate correspondence of 2ch sometime soon.
I think whether there was the person damaging the bulletin board. However, it is a small portion. We used it as the site that majority of people could talk about without what hesitation about the trouble of work and the private, a hobby not to be able to talk about to the person of the circumference, the current events material.
However, the victim is frightened. An indefinite person linking the name, an address, an e-mail address, the reply that I wrote in
A string charge account is not a simple thing, but will accelerate by the log outflow of the leak period. We paid money and received service. We demand the best correspondence.
By this leak, there are occurring person several hundred such as an email address modification, a mobile change, moving. An expense is caused. If it is an apartment, I can move. However, the person of the own house cannot easily move. What should a woman do?
In addition, it is exposed dozens of people an address and a full name, the reply of the applicable period though They do not really expect it. There will be a person losing a job surely from now on in that.
A lot of damage really appears.
Your company is a victim, but is the assailant who handled personal information easily. How is the life of the victim compared with doing timestamp? So that the damage does not increase any more, I hope the deal.
>>97 I am not the programmer who designed the old maru system. I dont know who wrote the old Maru code. The new Rokka maru system that I designed is very secure, because I am working my hardest to make a very secure Rokka system. In the next few weeks, I will be making many changes to the server software. My goal is to maintain the future security of all anonymous users.
jim-san & Code Monkey-san Thank you.Thank you.... Please observe the (August to July) time stamp of the log of 2ch, to be invisible if absolutely.
In order to connect and write credit card, there are people who try to stop that to mask the time-stamps, Please disregard. They are making a commercial site that summarizes the data of the victim with malicious intent.
(I'm using Google translate) Thank you, Mr. Code Monkey! Your response is very helpful for us. And I also thank you for your hard work. Thank you so much.
Thank you, Jim-san and C ◆Odemonkey.-san. I appreciate all your help.
But now I am worried that some other data will be leaked. Could you make it sure that any log would be make censored immediately if it were revealed dangerous?
I have questions on new security measures for credit card data which was used before Sep 2011. 1. Do you still have the information during that period? 2. What kinds of solutions were taken to strengthen the security system to stop the recurrence of leakage? As I am very worried about another cyber-attack, I am very pleased if you would tell me the details on above.
>>115 Jim-san (English Translation of >>118) I have questions on new security measures for credit card data which was used for an initial registration before Sep 2011. 1. Still, do you have the information during that period? 2. What kinds of solutions were taken to strengthen the security system to stop the recurrence of leakage? As I am very worried on another cyber-attack, I am very pleased if you would tell me the details on above.
I finally completed the new system that will replace Maru. The new system is called "Rokka".
One of the best things about Rokka is that it can display MOSAIC over timestamps. Now we can prevent everybody from seeing timestamps that shouldnt be seen.
You will see the new Rokka system in your apps very soon!
>>135 I am being denied by toro.2ch.net/sakhalin as 'continuous post'. Please post a couple of messages to allow me post. If possible, ask Jim-san post to the thread to avoid denying you and I.
>>150 (Sorry my Google-English) Hello, are you Mr.Jim? Thank you for your work. I E-mailed about the trouble site info to your E-mail address([at]bbs.pink). Would you see it?
How can we try the new system "Rokka" ? Have not personal users be able to use the new system yet ? I am very worried about timestamps of leaked period.
>>157 > it to access. Twin Tail seems to have advanced the most. Only Mizutama custom version can access via Rokka system, not public version. Mizutama custom is available at Rokka System http://toro.2ch.net/test/read.cgi/sakhalin/1378893022/25,29 If you introduce twintail as evidence for access and Mosaic, please write a note and url with thread name (Rokka System http://toro.2ch.net/test/read.cgi/sakhalin/1378893022/25,29). The author has own site to download , and the author has not respond me so public twintail is not clear to release.
124 :Code Monkey ★【】:2013/09/14(土) 23:20:25.18 ID:??? The UNEI have deleted the symlinks that I made on the 2ch servers. Rokka will not work until I can make those symlinks again.
125 :Code Monkey ★【】:2013/09/14(土) 23:22:22.31 ID:??? Please wait. I will talk with Hiroyuki later.
Hi, Ryan-san. Have you worked with Aaron Alexis? They say he's been in Japan this summer. If so, did you pay him enough? Maybe FBI will be interested in his job in Japan.
>>175 It will be working sometime today. I am drinking coffee now to wake myself up, then I will go to the data center and see if the transfer is complete. Then just some apache tuning and it will work.
>>178 Rokka is working already on all of Pink Channel and on the past logs of 2ch, those that were on banana3000. The bad guys will fail, and time will catch them. Timestamps for some periods of time on 2ch are masked similar to a mosaic system.
>>179 Thank you, jim-san It is the appreciated information which indicated the credit card number, and believed and deposited jim-san. Please do your best to be unable to see the information in which sick consultation and the person that was writing hardships are also contained and which was always stolen by whom. Did the criminal understand?
It is written in even now which the data of an address and entering a name has still diffused. Would you erase the address and name written in 2ch in large quantities after the incident?
>>186-188 At this time edits to 2ch need to be approved by the UNEI so as not to make something worse. We are working with them and patiently waiting for replies. The current concensus from the UNEI is it is not prudent to diffuse that. However by default our new rokka.2ch.net system does diffuse with digital mosaic. (This can be tested with rokka.bbspink.com) This discussion really should be in Japanese and include the UNEI. Would you be so kind as to post to their thread in Japanese? You can get a better result that way. I am looking for a peaceful resolution to this. Please talk kindly with them.
Good evening. As I am very concerned about the security of the new system, I am very pleased if you would explain how to protect our personal data in the new system which you have already had.
>>195 The new system does not collect personal information. It only collects the email of the user so that a confirmation letter can be sent. It is set up to use Bitcoin, which is an anonymous currency. Bitcoin was created in Japan. I am sure it must be more familiar to people in Japan than it is here. http://ja.wikipedia.org/wiki/Bitcoin Also Combini could still be used which collects very minimal information. Eventually we could accept credit card payments again. We are not willing or prepared to use credit card payment at this time.
The email and password for the account are stored in a locker. This locker is encrypted. That is where the name ロッカー comes from.
>>195 Thank you for your explanation. If I pay with Bitcoin, my personal data has to be safe. In spite of this, I am not able to get rid of our concerns, as you have already had much personal information of your customers for maru system. Moreover, as far as I know, maru user will be able to use the new system. Apparently still you must obtain our personal data. Thus, I highly appreciate it if you would explain how to protect your customer data in new system which you have already had for maru system.
>>196 There is an active investigation going on. Of course there was personal data. You are customers. This data was stolen from a pretty safe system. It is no longer on that system. There is no online data for users except for email and passwords. Bitcoin is a currency like a 100 yen coin. It is private.
>>197 Thank you for your quick reply. To make just sure, I would like to clarify you explanation. Would you please tell me if you find any mistakes in my understandings.
All of personal data without e-mail addresses and passwords which you have already kept is on the off-line system now.
>>203 You need to modify >>203. It will lead some misunderstandings. For example, 私たちは自発的でないか、あるいはクレジットカード支払いをこの時期に使用する準備をしました。 ↓ It means, we are ready to accept the payment by credit card at this time.
I will translate>>195>>197 into Japanese if you want.
hi,jim how r u? u did build a fab forum,"rokka". Awesome!!! but i can't access "rokka" wht happened? Hacked? or Cracked? poor serverz? name server "NS1.MAIDO3.COM" workz well.
anyway i think that few japanese buy bitcoin,coz it's troublesome procedures. then ur rokka page should provide the explicit instructions.and kool faq.
if u work in office Carson St. Suite 5901,u should force workerz fix serverz. If u work in 1485 Bayshore Blvd,u should rush into sererz 2 fix in 200 Paul Ave.Kick fuckin UnitedLayer out!!! if u work in 2533 N. Carson St,u should call Nakano to fix server in 200 Paul Ave.Is Nakano still in Washinton? if u work in Washinton,u should call 1485 Bayshore Blvd to fix fucking serverz? anyway where r u?
>>222 Non-authoritative answer: Name: kohada.2ch.net Address: 207.29.253.50 Seems ok to me. That is probably a server setting lookup remote hosts. It is not a dns issue.
「You have the right to remain silent. Any statement that you make could be used against you in a court of law. You have the right to have an attorney present when being questioned.」