[Funes-]

I think everyone should be free to post whatever they want; nonetheless, providing some kind of source to incriminating claims would be great--if only to make verifying them easier to other users.

In any case, this kind of posts is a reminder to stay alert and think critically; otherwise, we would believe many instances of misinformation without giving them a second thought. And we cannot expect others to downvote comments to oblivion or moderate them: it's something we ourselves have to be responsible for.

[chromedev]

https://news.ycombinator.com/item?id=19418111

[Arathorn]

That post was nothing to do with the security incident in question here (which happened April 11th 2019; that post is from March). The details in that post are sadly true (as others confirm on that thread).

However, we have no reason to believe there was a link to the April incident.

[chromedev]

You called him malicious/dangerous and said he is involved in an ongoing campaign of exploiting security vulnerabilities in Matrix.

[Arathorn]

yes, and he was, by his own admission: repeatedly bragging about exploiting bugs in Matrix’s beta design which we hadn’t fixed fast enough in his estimation (hijacking Matrix HQ; bricking #matrix-dev; threatening to loop over all public rooms to brick them unless we paid him; etc). It wasn’t exactly subtle, and it’s bizarre if you think we’re making this up or presenting without evidence.

However, the matrix.org security breach in Apr 2019 was unrelated to him, as far as we know.

[detaro]

Which is not what you claimed.

[chromedev]

That's how I perceived it.

[phre4k]

Maybe you want to look into your perception of the world in contrast to facts. Some bias in there apparently.