Hole Blasted In Guntrader: UK Firearms Sales Website's CRM Database Breached, 111K Users' Info Spilled Online (theregister.com) 63
Criminals have hacked into a Gumtree-style website used for buying and selling firearms, making off with a 111,000-entry database containing partial information from a CRM product used by gun shops across the UK. The Register reports: The Guntrader breach earlier this week saw the theft of a SQL database powering both the Guntrader.uk buy-and-sell website and its electronic gun shop register product, comprising about 111,000 users and dating between 2016 and 17 July this year. The database contains names, mobile phone numbers, email addresses, user geolocation data, and more including bcrypt-hashed passwords. It is a severe breach of privacy not only for Guntrader but for its users: members of the UK's licensed firearms community. Guntrader spokesman Simon Baseley told The Register that Guntrader.uk had emailed all the users affected by the breach on July 21 and issued a further update yesterday.
Guntrader is roughly similar to Gumtree: users post ads along with their contact details on the website so potential purchasers can get in touch. Gun shops (known in the UK as "registered firearms dealers" or RFDs) can also use Guntrader's integrated gun register product, which is advertised as offering "end-to-end encryption" and "daily backups", making it (so Guntrader claims) "the most safe and secure gun register system on today's market." [British firearms laws say every transfer of a firearm (sale, drop-off for repair, gift, loan, and so on) must be recorded, with the vast majority of these also being mandatory to report to the police when they happen...]
The categories of data in the stolen database are: Latitude and longitude data; First name and last name; Police force that issued an RFD's certificate; Phone numbers; Fax numbers; bcrypt-hashed passwords; Postcode; Postal addresses; and User's IP addresses. Logs of payments were also included, with Coalfire's Barratt explaining that while no credit card numbers were included, something that looks like a SHA-256 hashed string was included in the payment data tables. Other payment information was limited to prices for rifles and shotguns advertised through the site. The Register recommends you check if your data is included in the hack by visiting Have I Been Pwned. If you are affected and you used the same password on Guntrader that you used on other websites, you should change it as soon as possible.
Guntrader is roughly similar to Gumtree: users post ads along with their contact details on the website so potential purchasers can get in touch. Gun shops (known in the UK as "registered firearms dealers" or RFDs) can also use Guntrader's integrated gun register product, which is advertised as offering "end-to-end encryption" and "daily backups", making it (so Guntrader claims) "the most safe and secure gun register system on today's market." [British firearms laws say every transfer of a firearm (sale, drop-off for repair, gift, loan, and so on) must be recorded, with the vast majority of these also being mandatory to report to the police when they happen...]
The categories of data in the stolen database are: Latitude and longitude data; First name and last name; Police force that issued an RFD's certificate; Phone numbers; Fax numbers; bcrypt-hashed passwords; Postcode; Postal addresses; and User's IP addresses. Logs of payments were also included, with Coalfire's Barratt explaining that while no credit card numbers were included, something that looks like a SHA-256 hashed string was included in the payment data tables. Other payment information was limited to prices for rifles and shotguns advertised through the site. The Register recommends you check if your data is included in the hack by visiting Have I Been Pwned. If you are affected and you used the same password on Guntrader that you used on other websites, you should change it as soon as possible.
Re: or was it breeched (Score:3)
Thay joke was half cocked at best.
111K? (Score:2)
Re: 111K? (Score:2)
coming true (Score:1)
Re: (Score:1)
Re: (Score:1)
Re: (Score:2, Funny)
Re: coming true (Score:2)
Re: (Score:2, Insightful)
Re: (Score:2)
America ? So many heroes yet so many gun masscares, where no heroes ever come out.
Do you know what we often call the brave human who steps up to stop a murdering psychopath before he or she runs out of bullets or takes their own life?
A hero.
Just ask any mother lucky enough to still be able to hold and love a surviving child.
Re: (Score:1)
Stop telling lies. We all know in 90% or more cases they end in suicide or the police. The vast majority of the time you american heroes do nothing but run and hide.
The fact the massacres often run into dozens is because of lack of actions by ANYONE.
Re: (Score:2)
> Do you know what we often call the brave human who steps up to stop a murdering psychopath before he or she runs out of bullets or takes their own life? Stop telling lies. We all know in 90% or more cases they end in suicide or the police. The vast majority of the time you american heroes do nothing but run and hide. The fact the massacres often run into dozens is because of lack of actions by ANYONE.
There are 100x more examples of the bad guy being neutralized by the good guy outside of a mass shooting. You know this, because mass shooting are extremely rare by comparison to home invasions, armed robberies, attempted rapes, and just about every other crime committed with a gun.
Now stop lying to yourself, even if you're armed, you're not likely going to charge right into the fray against a psychopath willing to give their own life, who is probably more armed than you at the moment. One has to be smart
Re: (Score:1)
> There are 100x more examples of the bad guy being neutralized by the good guy outside of a m
Re: (Score:1)
THeres nothing stopping you american heroes from crossing the road during a shoot out and bringing your gun inside a school or office. Im pretty sure nobody inside is going to stop you. Its amazing how you heroes never appear before the police, always excuses and always bullshit, no wonder Hollywood exists. al
Re: (Score:3)
Where I live, only criminals have the need unregistered fire arms. Also, no-one is a hero for owning a fire arm.
Re: (Score:2)
It's like a condom. I'd rather have one and not need it then to need one and not have it.
I realize this is slashdot, so you may not have had much experience with condom use, but trust me, they are definitely something you want to have when you need it.
Re: (Score:1)
Im sure your parents, and little kids appreciate that people like you keep the gun culture alive. And im also sure you are so magnificent you always see the bad guy first and because we know bad guys always let the good guys shoot first.
Re: (Score:1)
Well, guns are banned in Chicago.
https://chicago.suntimes.com/c... [suntimes.com]
Bunch of fucking heroes there, and no mistake.
Re: (Score:2)
Surly if guns are easy to buy in Wisconsin or Indiana, people there would have more guns than Illinois. This appears to be true, about 2:1 percentage ownership IN:IL [gunpolicy.org]. So given that, why is Wisconsin and Indiana having about 2x more gun ownership, have much less crime than Chicago, and gun crime in particular? You say it's the population density and the city, well Indiana has a notoriously bad city, Gary, which still has 5.65 violent crimes per 1000 people [neighborhoodscout.com] vs Chicago's 9.48/1000 rate [neighborhoodscout.com]
How do lax gun laws in
Re: (Score:1)
I guess Afghanistan must be a paradise, they have very high gun ownership. How about you compare violence and gun violence against say England ?
Re: (Score:1)
Funny that the same stupid assholes who make that lame argument are usually the same stupid assholes arguing that it's racist to patrol our border with Mexico. A border that billions of dollars couldn't put any sort of practical dent into drugs crossing over but will magically protect against firearms getting to those same criminal elements once we ban firearms across the entire USA.
Oops...
Re: (Score:2)
What hell do you live in that you *think* you are a hero and need a fire arm ?
Millions of young, petite, and otherwise defenseless humans often rely on such a tool to protect and defend themselves and their loved ones from harm.
Those who are against that concept, are usually only one violent experience away from being convinced otherwise, if they're lucky enough to survive it.
What planet are you from where you *think* you can predict deadly violence, before it happens?
A normal country (Score:5, Insightful)
... you know, where gun related mortality is on a reasonable scale, instead of off the charts.
Where you don't need to own gun, because hardly anyone else does - including most petty criminals.
Where there isn't this absurd fear of imminent invasion at any given moment.
That kind of hell hole.
I like my hell hole. It's safe. I leave the doors and windows open at night.
Re: (Score:2)
Let me guess, no guns and very few illegal immigrants, tight border control perhaps. Universal health care as well, perhaps and an effective social welfare system because it is cheaper than high crime, high recidivism and prisons as punishment, rather than rehabilitation. It is not just the guns, it is the society that prefers a low violence society and works to achieve that.
Re: (Score:2)
Don't forget their countries probably also have a significantly smaller wealth gap and let's be honest, significantly fewer people as well. Also significantly less diverse as well.
We love to praise those Scandinavian countries for how amazing they are, but what they really are is a small population of people that pretty much all look the same and have the same cultural values.
None of that can be said about USA. We all look different, have different religions, different languages and probably likely have gra
Re: (Score:2)
... you know, where gun related mortality is on a reasonable scale, instead of off the charts.
Over 65% of all gun death in America, is due to suicide.
If we're going to talk reasonably about guns, then understand it's far more a mental health problem, than a tool problem. You don't cure obesity by blaming chefs, or by making high-capacity buffets illegal.
I like my hell hole. It's safe. I leave the doors and windows open at night.
And yet you still refer to it, as a hell hole? Tends to go against whatever argument you're failing to make here.
Re: (Score:2)
The sarcasm didn't come across, I should have used /s next to "hell hole" - but, tbh, there's plenty of other problems where I live, just as there is everywhere else in the world.
If we're going to talk reasonably about guns, then understand it's far more an availability problem. You don't cure obesity by
Re: (Score:2)
The sarcasm didn't come across, I should have used /s next to "hell hole" - but, tbh, there's plenty of other problems where I live, just as there is everywhere else in the world.
I understand, and thank you for the clarity.
If we're going to talk reasonably about guns, then understand it's far more an availability problem. You don't cure obesity by making junk food even more readily accessible and affordable.
There are 300 million guns available in America. And yet, only a TINY fraction of those guns (and people behind them) are committing crimes. And not everyone is obese, even with all that junk food and cheap availability. This tends to confirm it's rather stupid to blame the tools, and instead we should be focusing on the individual who is responsible for abusing said tool.
You don't cure internet addiction by standing up free WiFi hotspots, nor do you punish the
Re: (Score:3)
This has nothing to do with making anything illegal - but rather trying to address a balance that is tilted the wrong direction.
The USA has a gun problem, period. Whether that is down to education, culture or the sheer volume of guns available, I guess is difficult to totally pinpoint.
But sure, totally get your point about volume - if you believed all the stories in the media, you wouldn't got out the front door.
People outside the USA perceive it as being totally awash with gun violence 24/7 in every single
Re: (Score:2)
This has nothing to do with making anything illegal - but rather trying to address a balance that is tilted the wrong direction. The USA has a gun problem, period. Whether that is down to education, culture or the sheer volume of guns available, I guess is difficult to totally pinpoint.
But sure, totally get your point about volume - if you believed all the stories in the media, you wouldn't got out the front door. People outside the USA perceive it as being totally awash with gun violence 24/7 in every single part of what is a HUGE country. But that doesn't mean it isn't a problem - your mention of suicide for one. The other is mass shootings.
Making things illegal rarely solves problems, if ever. There are so many factors behind high levels of gun violence, but availability is absolutely one of them. It's big money.
If you're not calling to make them illegal, then it is the culture you wish to shape and change. When a country is founded on fleeing from an oppressive government hell-bent on removing liberties from its citizens in order to control them, go figure the Right to bear arms is only second to the Right to speak up for it.
In other words, good luck changing American culture. Even this asinine high-capacity ban that the current administration is hinting at will fail, because it failed last time. The AWB of '94
Re: (Score:3)
What hell hole do you live in, where you have to register a firearm?
It's called "civilization".
Poking the wrong bear. (Score:1)
So the criminals are going to pester armed citizens? So what could possibly go wrong...for them?
Fool. (Score:5, Informative)
You are a total fool. These criminals specifically know their victims have guns. They will come FOR those guns and they will be prepared. They will be specifically targeting people that own multiple weapons.
Can an honest citizen with a gun defend themselves? Yes. If they are ready and prepared for it and the criminal is not.
Can a citizen that has no idea armed criminals are coming to steal their firearms beat them? No chance.
None at all. The criminals may wait till the gun owner leaves the house. If the gun owner is in the country they will do a full armed invasion, wearing body armor.
Ambush beats machismo. No matter how much of an arrogant gun nut you are, you WILL lose if a team of body armor wearing armed thugs come for you. Especially if they wait you go to work.
Re: (Score:2, Troll)
Gurps_npc meet the NRA. NRA meet Gurps_npc. Apparently one of you believes your guns will protect you from a corrupt government. The other? Well they have body armor.
Re: Fool. (Score:1)
Re: (Score:2)
Well done, you've just demonstrated that you're not in the UK and have no fucking clue about UK law.
Hint: If you're able to to respond to an alarm with a loaded .308 in the UK, you're about to lose the AR-10, your FAC and your liberty.
Re: (Score:1)
Sounds like I'm better off in USA if that's the consequences to defending my home against invaders.
Re: (Score:3)
Sounds like you'd be better off in the UK if you currently live somewhere that home invaders are a credible risk.
Re: (Score:2)
Re: (Score:2)
I can't believe this got modded up. TFA says it was untargeted.
And no one can download the result, is that what you think?
Re: (Score:2)
Nice asserted conclusion (Score:2)
"They will come FOR those guns and they will be prepared. They will be specifically targeting people that own multiple weapons." overestimates how criminals work, and the sort who HAVE firearms don't need to do home invasions to obtain them. Unarmed BURGLARS on the other hand can lie in wait....
Most home firearms thefts are not home invasions. Perhaps you should study your subject or not express an utterly uniformed, ignorant opinion. The citizen may also employ a gun safe, alarms and a security system as
Re: (Score:2)
Lock it up so when someone breaks in while you are at work, they can't just make off with your firearms. Also, there are specific types of gunsafes you can buy that are not hard to access, ie finger print to open it or quick couple of numbers and you are there.
If you are caught in bed a sleep, none of this will matter of course.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Any terrorist can but a copy of the NRA list.
There is no "NRA List". The closest thing available is a mailing list sold by the NRA containing names and addresses for former members.
NRA claims about 5 million members, yet recent surveys find that about 40% of adult Americans own a gun or live with someone who does -- 83 million armed citizens
Re: This is why gun owners do not trust registrati (Score:2)
Re: (Score:1)
As a civilian, if you sell enough firearms to attract ATF attention, its not a loophole.
The problem is that the ATF will not tell anyone what the rate of sales are to qualify as a dealer. After the ATF started to crack down on collectors then people started to file for their FFL. Now there are more FFLs than the ATF has people to police. Someone could burn their Form 4473 papers every weekend and the ATF may not find out for years. What records the ATF does have tends to be filled with errors. Oh, and the ATF loves to catch people for using the postal abbreviation for the state because th
Re: (Score:1)
If you criminalize being a victim of theft then there's going to be people reluctant to report the crime. If you want to find gun thieves then encourage people to report the theft. One way to encourage that is to return the stolen property. If the people know that the chances of getting their gun back is zero then there is no motivation to report it. If there's a chance of being charged with a crime over it then now there is a real disincentive. Sounds about as logical as Republicans taking funds from
Re: (Score:2)
In California, if your gun is stolen you are suppose to report it. You would be considered an accessory to the crime committed by the thief if you didn't report it. So if they found some person that did something bad and used your gun, you would also go down because you didn't report it.
You really are better off having an illegal gun except that if you have to use it, the police will definitely check to see if it's registered, then you would be in trouble for having possession of an illegal gun. Who cares t
Re: (Score:2)
Don't trust anyone that wants a firearm registry. It's not there to return a stolen gun to the rightful owner. Chances are it will be used against the owner as evidence of not properly storing the weapon.
Well, that's exactly what I want it to be used for. If we're going to be foolish enough to allow gun ownership at all, I want the losers who play with these things watched as carefully as possible.
Good news - the UK banned handguns years ago (Score:1)
A vaguely positive aspect of this is that we banned hand guns, so the weapons revealed by this hack are 'only' rifle and shot guns. But in a country where there is a thriving trade in illegal guns at high prices, this is very bad news.
https://www.standard.co.uk/new... [standard.co.uk]
Re: (Score:2)
Agree to an extent, but there was absolutley no justification for the incoming Blair government to ban small calibre rimfire target pistols in 1997. It means that the British olympic team has to train abroad. A ridiculous piece of 'think of the children' legislation that should be repealed.
Obama (Score:2)
It was Obama he's coming to take their guns.
And nothing of value was lost (Score:2)
Puhleeze. Guns in the UK are not a thing. There was nothing more disturbing than walking into Holland & Holland in London and seeing the three or four high-end hunting rifles. It's now a clothing store for the most part. Purdy was a little better but the cheapest thing in there was $40,000.