The crew behind the viral decentralized social media platform good friend.tech has refuted a report which claimed that the non-public info of greater than 100,000 of its customers was “leaked.”
The now-amended report, first posted by The Block, urged that knowledge posted by Banteg, a pseudonymous developer for Yearn Finance, was “leaked” info.
The good friend.tech crew nonetheless clarified that the data got here from scraping its public API.
“It’s like saying somebody hacked you by taking a look at your public Twitter feed,” the official good friend.tech account argued.
That is simply somebody scraping our public API that exhibits the affiliation between public pockets addresses and public Twitter usernames.
It’s like saying somebody hacked you by taking a look at your public Twitter feed.
— good friend.tech (@friendtech) August 21, 2023
The put up additionally acquired enter from X’s (previously often known as Twitter) Group Notes contributors.
“The underlying knowledge is public and anyone can work it out studying a block explorer: for those who purchase a share, 5% goes to the creator’s pockets and he may have wanted to fund his pockets. The database solely scraps that public data,” learn the group word.
Banteg initially printed a repository of the publicly-available scraped knowledge, containing particulars of customers on the good friend.tech platform on GitHub.
101,183 folks has given good friend tech entry to posting as them, leaked db signifieshttps://t.co/yYYDqzUoON
— banteg (@bantg) August 21, 2023
This knowledge included pockets addresses on Base, linked to the corresponding Twitter usernames for greater than 101,000 customers.
“101,183 folks have given good friend.tech entry to put up as them, leaked db (database) signifies,” Banteg wrote.
Banteg additionally gave criticism to the wrong interpretation of their preliminary put up.
In the meantime, X customers additionally joined in to poke enjoyable on the scenario, with one person Satsdart posting a hyperlink to the Ethereum block explorer, humorously claiming that he had found “a leaked database displaying ALL transactions on eth.”
i simply discovered a leaked database displaying ALL transactions on eth look guys https://t.co/4rrC6sBYJM
— satsdart (@satsdart) August 21, 2023
Notably, Banteg’s launch of the information adopted a put up from blockchain analytics service Spot On Chain which discovered that good friend.tech’s API revealed particular units of data not instantly accessible to on a regular basis customers of the app.
2. The API of @friendtech additionally leaks the data
You’ll be able to test the pockets generated by FriendTech by this API:https://t.co/uqb7V0FxLi
Simply substitute “0x317931c6b64f6058f688c7d62e84e1491a319dff” with the handle you see on the contract. pic.twitter.com/mGrRax4Jd6
— Spot On Chain (@spotonchain) August 21, 2023
Probably the most outstanding instance was that wallets created by sure customers may be considered by way of the API.
When requested how this info could possibly be used, Spot On Chain stated it could possibly be used to sport the system by permitting bots to near-immediately buy shares of huge accounts as quickly as they signed as much as good friend.tech.
“Quite a lot of bots have already taken benefit of this, it displays the contract, finds the large KOL, and buys shares earlier than others,” wrote Spot On Chain.
Since its beta launch on Aug. 11 good friend.tech has seen its customers engage in over 934,000 distinctive transactions and commerce a staggering quantity of 34,320 Ether (ETH) or $57,101,116 at present costs.