One of the great ironies of the Trump-era conservative movement is its derisive mocking of the term “safe space” while simultaneously demanding its own safe spaces using the exact same language. That irony is even more delicious in the case of a conservative app called 63red Safe, which ZDNet reports was leaking user data in a highly unsafe way. The Chronicle reports that the app was removed from the Apple App Store and Google Play for it security flaws on Wednesday, just days after its initial launch.
The Right can't code, who knew!
— Micheal Klauda (@RedMageCadwyn) March 12, 2019
63red Safe is part of a suite of conservative apps that all use the number 63, an apparent reference to the 63 million votes that Donald Trump received in the 2016 election. The app describes itself as “Reviews of local restaurant [sic] and businesses from a conservative perspective,” with Yelp-type reviews on whether establishments make too many left-leaning social media posts, whether they allow customers to carry firearms, and whether the clientele can wear their red MAGA hats in peace.
But a white-hat security expert found that the red-hat users’ email and other personal data were exposed by a flaw in the app.
Hello conservative friends,
Last time we discussed, I got access to the @DonaldDaters database in less than 5 minutes. Follow me in this thread and I will show you how I got access to the @63red database and obtained all the details of their users even quicker
— Elliot Alderson (@fs0c131y) March 12, 2019
French security researcher Baptiste Robert, who tweets under the Mr. Robot character name Elliot Alderson details his exploits in a lengthy Twitter thread that explains “how I got access to the @63red database and obtained all the details of their users.”
When reached for comment, Robert told ZDNet that “I was able to do almost everything, to be frank.” He also said that he had not notified the app’s creators, admitting, “I don’t really like Trump fans.”
TL;DR: No lost passwords, no breach of database, no data changed, minor problem fixed. We’re angry by the attempt, FBI notified.https://t.co/v59DExCI0F
— 63red (@63red) March 12, 2019
But the 63red team saw red, and they’re none too pleased at being removed from the app marketplaces.
“We see this person’s illegal and failed attempts to access our database servers as a politically-motivated attack, and will be reporting it to the FBI later today,” the app’s creators fumed in a Medium post. “As we have seen across the United States, conservatives particularly have come under attack for their political beliefs — verbally, physically, and electronically.”
This is, of course, the very same “deep state” FBI that Trumpers so thoroughly despise. And we don’t mind pointing out the additional irony that referencing Trump’s 63 million votes comes in the context of an election in which Hillary Clinton got 65.8 million votes.