Skip to navigation
   
Davey Winder's Blog
RSS

How Marblecake Hacked Time

By Davey Winder in Editorial

Posted in Blog, Security, Internet on April 28, 2009 at 1:09 pm

Permalink | Author Profile

According to the annual TIME Magazine poll, the most influential person in the world is someone called moot. Who? Well he’s a kid in his twenties who happens to be the founder and leading light of subversive website 4chan, the users of which in turn happen to be behind such successful Internet memes as the infamous Rickrolling phenomenon which saw links all over the web pointing to a 1987 music video of ‘Never Gonna Give You Up’ by Rick Astley.

Surely ‘moot’ cannot really be the most influential person on the planet, beating the likes of Barack Obama, Oprah Winfrey or even the Korean pop star ‘Rain’ who has apparently pretty much dominated this pointless poll in recent years.

The answer is no, he cannot be, and indeed is not. The clue as to why he won can be revealed if you look at the 21 names which topped the poll, specifically the first letters of their names which spell out the phrase ‘marblecake also the game.’ Marblecake is an IRC channel which was responsible for the much publicised ‘message to scientology’ video meme for example.

A Time spokeswoman confirmed that the hack had taken place, telling The Register that “We took many preventative measures to maintain the integrity of the Time 100 poll on Time.com, and moot has a passionate community of users who worked to influence the poll.”

For what really happened, then, we need to dig deeper into the mechanics of the hack itself and that’s exactly what Paul Lamere managed to do by speaking to the people behind it. He recounts how he had a 4am meeting in an online chatroom with someone only calling himself Zombocom who revealed that members of the 4chan /b/ board decided to try and rig the voting after discovering Time had put moot on the list of 200 nominees following an earlier interview in the magazine. They did this by first creating autovoters to perform the required HTTP get on a voting url which enabled votes to be triggered via spam urls. The way the urls were crafted meant that it was relatively simple to push multiple low value votes, ratings of 1, to any given candidate. When Time eventually spotted voting irregularity, namely that moot had a 300 percent approval ratting while everyone else was below zero, the magazine changed the voting protocol and added an MD5 hash of the url together with a salt, or secret word, to make things secure. Which they would have been were it not for a 4chan /b/ board member discovering that salt sitting within the voting Flash app and extracted it.

When Zombocom found he could pretty much vote as quickly as his computer allowed, which was 500 votes per minute or thereabouts, he set about having some fun on the side and decided to enlist his friends to manipulate the results to spell out the Marblecake message.

Perhaps it is time that Time pulled the plug on this poll once and for all, or at least brought it in house and away from the whims of the online pranksters.

12345
Rated: 100% (2 votes)
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Pingback by Topics about Flash » How Marblecake Hacked Time - April 28, 2009 on 3:07 pm

[…] Davey Winder created an interesting post today on How Marblecake Hacked TimeHere’s a short outlineAccording to the annual TIME Magazine poll, the most influential person in the world is someone called moot . Who? Well he’s a kid in his twenties who happens to be the founder and leading light of subversive website 4chan, the users of which in turn happen to be behind such successful Internet memes as the infamous Rickrolling phenomenon which saw links all over the web pointing to a 1987 music video of ‘Never Gonna Give You Up’ by Rick Astley. Surely ‘moot’ cannot really be the most influ […]

Comment by links of london - October 16, 2009 on 7:38 am

It was a very nice idea! Just wanna say thank you for the information you have shared. Just continue writing this kind of post. I will be your loyal reader. Thanks again.

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

IT CAPTCHA Rumour GSM BOFH Finjan Marketing Apps printing Army fake McKinnon library Psion Backlash worker world of warcraft theft email data protection campaign digitise EU office Business patch management global remote working botnet ROFL news broadband HP Children GMail VPN Lotus credit card fraud help China Advertising gaming privacy Blogging transactional security wifi green web 2.0 Mobile Phone admin Olympics standards christmas dumb Google Earth App ecommerce Media Amazon Game science Music Firefox Geeks phishing Architecture worm security avatar Project Funny workplace fun disclosure parental control economics betting Beta Windows 7 spending payment server VeriSign Madness virtual machine Application terrorism search spam ISP encryption payments Deal Data Centre surveys Notebooks Education size millions students Browsers Browser man-in-the-middle Battery nightmare rootkits Gartner SSL storage Spotify Twitter chips Parenting Research Psychic Analysis Scotland fool management Mars App Store politics Mobile Phones MiniBook Flash SMS Digital Footprint hacking Election service USA RATM games memory Michael Jackson second life survey fraud museum Silverlight Cisco BSI e-commerce home AMD Conference Patents RAM Government remote IBM Licensing iPhone 3G outsourcing VM Obama Space recession Linux work Banned holidays copyright football tax Networks PS3 XP environment Paris Hilton universe adware computer archiving web graphics Meh trust Steve Ballmer Performance computing Russia Yahoo services IDC Trousers Kindle desktop scan development Sony School data Gateway iPhone 3GS Facebook Enterprise OS hypervisor NASA Trojan hardware tech Acer Experiment Steve Jobs books hoax acquisition xmas Apple hacker law code Kin network Jobs carbon copy Energy statistics prison snooping report hubdub Windows Phone 7 Series gadgets Recall Health Windows The Federation Internet linkedin Zango open source HPC Eee PC Kaspersky Employment Texting malware MSNBC economy ISPA Rant Supercomputer Johnny Depp Internet Explorer documentation FBI meme Noro Palm Sex e Study symantec eBook Press productivity monetisation Software virtualisation Texas Instruments money DNS iPad Jesus Phone poll President Developers Digg banking Nexus ASUS NBC banks Top 10 stupid Programming virus Palm Pre biometrics Top 500 computing social networking innovation MessageLabs MSN Addiction Retail iPod Google Ballmer scam black hat Kill Switch Europe Military InfoSec exploit mobile YouTube scareware Netbook family debian compromise Voice iPhone Nintendo support lawsuit policy Blog Eee crime Web Development Vista sick Guardian mail Porn Big Brother Microchip Intel Video Pirate Microsoft information teleworking Gadget earth hour Android virtual world console staffing shopping credit crunch cloud stupidity smartphone Adobe Dell IP Review migration ID Theft Opinion OCR Hack Death Harry Potter Bill Gates technology computers Tesco Mafia patent
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement