No wildly useful lessons. GoDaddy is still cheap, abusive shit. Social engineering is still easier than real hacking, and often more powerful. Customer support is lousy enough on services you pay for, and downhill from there. The probability that a given longish-term user of the internet has a web of (some active, some forgotten) accounts, email addresses, ‘security questions’ and similar nonsense large enough that they’ve forgotten parts of it, and densely connected enough that anybody with a brainstem and access to basic biographical data can probably find the single thread that allows them to unravel the entire mass, just by chaining reset-requests and pretexting phone drones still approaches 1.
It’s a disappointing story, really; but for every hack that pupates into a code patch (much less an actual lesson about something, rather than yet another buffer overflow), I don’t even want to think about how many of these get pulled.
It mostly reads like the sequel to this one, with a few variations in the details.
