Menu
Browse

Cyber Threat Actor: SuperExtremeShitpostingTeam

Actor Type Location Known Incidents
 Icon
Sensationalist
Russia
1 incident
Profile

SuperExtremeShitpostingTeam is an alias used by a threat actor that has been publicly linked to Russia. The actor came to public attention in September 2015 when a large volume of data from the Patreon donations platform was released online. The hackers initially shared the data through various online repositories before it was mirrored by other users. The original post included a note that the authenticity of the dump could not be independently verified at first. The leaked archive amounted to almost fifteen gigabytes and contained password records, donation information, private messages, campaign details, and source code from the service. Security researcher Troy Hunt examined the dump and confirmed its authenticity, noting that the presence of internal source code indicated a compromise that went beyond a simple SQL injection. The breach exposed more than two point three million unique email addresses, including Hunt’s own, and revealed supporter identities and financial contribution records across numerous campaigns. Although Patreon had protected user passwords with bcrypt hashing, the actor’s access to the source code raised concerns about potential weaknesses in other encryption mechanisms.

In response to the incident, Patreon advised users to change their passwords on the service and on any other sites where they might have reused the same credentials. The data remains publicly available and continues to be part of the permanent internet record of the Patreon breach. The exposure of internal source code suggested that the attackers had obtained broader system access rather than limited to a single injection point. This incident remains one of the few publicly documented activities associated with the SuperExtremeShitpostingTeam alias.

Incidents
Attributed incidents available to members
1 incident
Sources
Sources available to members
1 source