Forums

Thanks "dan"!

Thanks "dan"!

You rascal.

Carl Thompson | 09. marraskuu 2018

Rapscallion!

Magic 8 Ball | 09. marraskuu 2018

I reached my limit of new posts for a day. Please remind everyone to do a password reset or make sure the passwords used here are not same as any password they use anywhere else.

Mike UpNorth | 09. marraskuu 2018

At the top of the forum there is a message from Tesla official staff with the red T emblem. "dan" is the only poster to have that same red emblem.

I'm 98% sure dan is/was on the inside of Tesla in some capacity.

The fact the forum blew up an hour or so after he posted just makes the whole thing so much more entertaining.....dan come back and tell us you're safe! Lol

dan | 10. marraskuu 2018

Safe.
Stay tuned for the full story.

Magic 8 Ball | 10. marraskuu 2018

Security!

Mike UpNorth | 10. marraskuu 2018

Whoa.... waiting patiently....not

Mike UpNorth | 10. marraskuu 2018

What does that mean? dan hacked the forum?

Magic 8 Ball | 10. marraskuu 2018

Seems weird to expose yourself as a hacker and then hit up Musk on twitter.

Mike UpNorth | 10. marraskuu 2018

True.

Magic 8 Ball | 10. marraskuu 2018

I guess we will have to stay tuned. I have did look at the twitter feed but really don't want to click on his website. Looks like he is Cleveland? But you never know.

Mike UpNorth | 10. marraskuu 2018

I went onto the website and more interestingly, the about dan page....I learned some things.....it's legit.

Magic 8 Ball | 10. marraskuu 2018

What did you learn?

Mike UpNorth | 10. marraskuu 2018

More than I anticipated learning.....go see for yourself.

Magic 8 Ball | 10. marraskuu 2018

Bait!

Coastal Cruiser. | 10. marraskuu 2018

100 Quatloos on the "dan" story. The most surprising thing is that it has not happened before now.

And we now know why "dan" kept a PDF of his post.

Mike UpNorth | 10. marraskuu 2018

'Quatloos'
Is this more Galaxy guardian talk????

Carl Thompson | 10. marraskuu 2018

OK, now I'm intrigued.

Mike UpNorth | 10. marraskuu 2018

But correct, PDF of his post now makes sense.

Mike UpNorth | 10. marraskuu 2018

You weren't already?!

Carl Thompson | 10. marraskuu 2018

@michael

I don't see anything there now. What did you see?

Mike UpNorth | 10. marraskuu 2018

Dandeals.com
Bottom of page. About Us.

Carl Thompson | 10. marraskuu 2018

If I go there I just see a bunch of ad redirects that go nowhere.

Magic 8 Ball | 10. marraskuu 2018

Keep hunting Carl you it is there you just have to look harder.
Obvious when you see it.

Mike UpNorth | 10. marraskuu 2018

dan!!! Where are you?????

Stop watching the Cavalier's/Brown's game and spill your beans!

casun | 10. marraskuu 2018

...

Mike UpNorth | 11. marraskuu 2018

My theory/guess;

dan is a regular guy that bought a TM3 and came on here to complain.
But he's also a tech guy that somehow hacked into the forum through a back door.
He then warned/threatened Tesla to expose the vulnerability.
Tesla paid him an undisclosed amount to stay quiet.
Tesla fixed the security hole in the forum.
And we'll never hear from dan again (due to an IDA).

The end.

jjgunn | 11. marraskuu 2018

Cleveland is boring. Gotta do something to create excitement besides dropping a Cleveland Steamer.

Stop drinking Lake Erie water!!

Magic 8 Ball | 11. marraskuu 2018

I am really close to being totally on board with that theory, expect why would he choose a FUD thread for the exploit?

Why the taper off of "delivery" and "paint" threads since the exploit? If Dan "fixed" a FUD problem that would be awesome! If Dan was phishing to make some money by exposing a breach, why go public first? If Dan happened on a security breach, again why go public first? Still seems odd.

Dan is now public, his identity is known, he posted some things that might make people pissed off at him, is that a wise move?

Mike UpNorth | 11. marraskuu 2018

Agreed. Still more questions than answers.

dan | 11. marraskuu 2018

I've typed up the full story, but per Tesla request, I'm not publishing it until they can finish fixing the problem.

Magic 8 Ball | 11. marraskuu 2018

Who is at risk dan?
Are you benevolent?
If individuals are at risk why not share specifics?
Who are you loyal to?

Fishy dan

Mike UpNorth | 11. marraskuu 2018

Thanks for the update.
So we will know the story. Looking forward to it.

dan | 11. marraskuu 2018

@Magic
How would sharing specifics now help Tesla or help consumers??

Magic 8 Ball | 11. marraskuu 2018

Are individuals at risk of having personal information (I.E. Tesla account info.) compromised as a result of this security issue? If so, do those individuals not have a right to know immediately?

dan | 11. marraskuu 2018

So you think it's better to tell everyone how to get every Tesla owner's contact info rather than let Tesla attempt to resolve the issue?

Magic 8 Ball | 11. marraskuu 2018

Here's what I know:
The site is up and running and you have not shown up as danT (in red) since the exploit.
We can now assume you have everyone's personal contact information based on your most recent comment.
No one finds a security breach like this on accident, you were snooping.
Do you have a good lawyer?

BTW, what does a full package summer in Europe cost these days?

dan | 11. marraskuu 2018

Keep on making those ASSumptions. I find it all rather humorous.

Magic 8 Ball | 11. marraskuu 2018

So now you are down to the level of rhetoric.

What timeline did TESLA give you to "finish"?
Before you go to the "press".

Magic 8 Ball | 11. marraskuu 2018

I am not too sure you have many others laughing with you on this one dan.

Coastal Cruiser. | 11. marraskuu 2018

dan said: "Keep on making those ASSumptions. I find it all rather humorous."

dan's credibility quotient has just skyrocketed. You go dan!

Magic 8 Ball | 11. marraskuu 2018

Really, you find someone who claims TESLA has not finished fixing a security breach, promising not to tell anyone of the details until they finish, a credible thing to do?

Say dan bought a list of contacts (something a dansdeals guy would do) and said list was proven to be good by a simple test. Or say some other scenario got dan this intel to get into the TESLA site. It could be innocent or nefarious as to his access was achieved, it does not matter.

Does anyone find it funny that dan would get on the internet, hang this on the line, and tell all when TESLA meets some "finalize".

Is it reasonable to think that, based on what dan disclosed (if sincere), that people are worried that their personal contact information was illegally obtained through security breach at TESLA and a fix is not yet "finalized".

This stinks to high heaven.

gballant4570 | 11. marraskuu 2018

I feel a bit puny. I must have missed out on the entire "dan" episode, whatever it was.... but I doubt I lose a minute's sleep over it.....

jjgunn | 11. marraskuu 2018

Even IF there was a breach on Nov 8 & you did get a dump of everyone's info, Today is the 11th. The forum has been restored. I'm going to take a wild guess that the so called security hole has been patched.

I changed my password this morning. Please let me know if you can get into my account. Thx!

bj | 11. marraskuu 2018

Mollom has already gone end-of-life. Hopefully this will spur Tesla to introduce better forum software. Like one that is searchable, posts that can be edited and deleted, and a post ratings system.

Carl Thompson | 11. marraskuu 2018

"Really, you find someone who claims TESLA has not finished fixing a security breach, promising not to tell anyone of the details until they finish, a credible thing to do?"

Yes. That's the way these things are almost always handled.

Magic 8 Ball | 11. marraskuu 2018

Really Carl? What exactly do you find credible about dangling a security breach in public view and telling people that TESLA is has not "finalized" a security fix. Are we waiting until someone comes back to work so they can be walked out?

This is never how a benevolent person tries to help people he is "concerned" about. The action of going public has consequences of making people worry about their personal information being secure with TESLA. This will not go away until dan discloses the story, as he said he would. So how long is dan going to make people worry? What timeline has TESLA given dan so dan can share the "story"? Are we to wait in perpetuity with worry wondering if dan really exposed something significant?

FUD by any other name.

Magic 8 Ball | 11. marraskuu 2018

This is how a security breach is reported to TESLA:

VulnerabilityReporting@tesla.com

Not through a forum hack and twitter exposure using a dansdeals website account.

Carl Thompson | 11. marraskuu 2018

@Magic

I don't know what to tell you. It is extremely common for companies and researchers to announce they've found a security breach but to not disclose details until the companies whose software is affected have had time to mitigate the issue and deploy patches. It's just how it's done. Sorry if you don't like it.

Carl Thompson | 11. marraskuu 2018

That should be:

"... to announce they've found a security _vulnerability_ ..."

Not necessarily a "breach."

Pages