Users from 4chan claim to have discovered an exposed database hosted on Google’s mobile app development platform, Firebase, belonging to the newly popular women’s dating safety app Tea. Users say they are rifling through peoples’ personal data and selfies uploaded to the app, and then posting that data online, according to screenshots, 4chan posts, and code reviewed by 404 Media.
From what I have seen, they initial guys shared a link to the database, not any content. The equivalent of telling people: “Look at this unlocked door I found.” They did not “steal” anything as far as I know.
Also, the analogy doesn’t work either. What if it really was intended to be public? Making a copy is not analogous to stealing something, it’s analogous to taking a picture.
PS: Maybe to make it clearer what I am thinking of. A real court case that happened: A person found a bunch of documents on a government website, just sitting there. He decided to share them. Turns out they were not supposed to be public. The government tried to prosecute the guy who had no idea the files were not public. They thankfully lost.
How can it be the responsibility of a person to try to figure out if these files are supposed to be public or are public on accident? Yes, these guys had a good guess that this was an accident, but so what. We don’t prosecute people for having good guesses.
Damn, do you think this link I found that has a ton of women’s drivers licenses is supposed to be public? Better share it to 4chan. They’ll know what to do.
So it’s just about the drivers licenses? We should make a law to ban sharing drivers licenses? Or is it posting to 4chan that should be illegal?
What do you believe should be the law here? You just keep arguing this specific case should be illegal, but based on what? Which specific part?
When did this ever become about what laws should be? There already are laws for this. How are you so obtuse? They doxxed thousands of women. I can’t stress that enough. They doxxed thousands of women and you’re defending them.
Not legally, no they didn’t. Tea did. Under current laws, they have no obligation to report this or to not tell other people about it.
Seems the issue is you don’t understand how laws work.
No need to be condescending. The current laws about hacking in America are actually much more strict than they should be and can be used to punish people who actually do just stumble on things they shouldn’t have access to as well as people who are ethical whistle blowers. So no, it seems you don’t “how laws work.”
But I don’t believe those laws should be used to go after people who make mistakes or report problems in good faith. These folks didn’t make an innocent mistake and weren’t acting in good faith.