Yesterday, a group of “gay furry hackers” known as SiegedSec released 200 gigabytes of leaked data from the Heritage Foundation on their Telegram, a group texting application.
“This breach can help shine light on who exactly is supporting Heritage, and also encourage people to fight against them even more than before,” said a member of the group known as “vio” to LGBTQ Nation.
The group claims to have targeted numerous anti-LGBTQ+ political entities over the last year.
“I believe it’s also worth noting, this could help show the amount of support Heritage has that’s provided by malicious users or bots from China,” she said while linking to a thread on X by journalist Jackie Singh, which analyzes the leak’s data.
Stay connected to your community
Connect with the issues and events that impact your community at home and beyond by subscribing to our newsletter.
I am reviewing this alleged hack of The Heritage Foundation.
I have identified very embarrassing data within this dataset. Why so many Chinese IP addresses? 🤔 https://t.co/M2MXK3g4mA
The leak resulted from a string of hacks carried out by the group’s “#OpTransRights,” which targets groups opposed to trans civil rights. The Heritage Foundation in particular was targeted for its creation of Project 2025, a plan to install ultraconservative policies if former President Donald Trump wins the 2024 presidential election. Project 2025’s desired policies include strong restrictions on transgender care and denying any legal recognition of trans people’s gender identities.
LGBTQ Nation obtained access to the leaked data. It contains information from between 2007 and 2022, and it focuses primarily around the Heritage Foundation’s news wing, The Daily Signal. The data includes information on commenters’ email and IP addresses, along with information regarding those who had articles posted on the site.
The group also claims that a majority of data from the leak is “mostly useless” information that it will not be releasing.
“The most interesting of the breach is the user data, such as email address, full name, username, and password. it also contains information such as [the] name and IP address of commenters. This user data has many people of interest, for example, House Representatives, US govt employees, and the Heritage president,” said vio.
LGBTQ Nation was able to obtain access to this data and was able to confirm the presence of politicians, government employees, and additionally the Heritage Foundation president, Kevin Roberts within the data.
SiegedSec, as well as vio, had their X accounts taken down yesterday after announcing the leak on their socials media accounts.
The Heritage Foundation was hacked previously in April, and the organization had to shut down its servers following an attack from “nation-state hackers.” According to The Intercept, SiegedSec had targeted the Heritage Foundation back in June, something that vio denied participation in.
SiegedSec has targeted other groups and individuals earlier this year as part of #OpTransRights, including the ultraconservative outlet Real America’s Voice and a Minnesota church pastor who was accused of transphobia.
In their Telegram post, the group announced that there is “an important announcement” coming soon. While vio declined to comment on the specifics, she said that “the announcement we have coming soon will affect SiegedSec’s future as a group.”
LGBTQ Nation reached out to The Heritage Foundation for comment, however no response was received at the time of publication. This article will be updated if the organization does respond.
Don't forget to share:
Support vital LGBTQ+ journalism
Reader contributions help keep LGBTQ Nation free, so that queer people get the news they need, with stories that mainstream media often leaves out. Can you contribute today?
He claims to be a “staunch defender of transgender rights.” His own letters suggest otherwise.
Never Miss a Beat
Subscribe to our newsletter to stay ahead of the latest LGBTQ+ political news and insights.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
Cookie
Duration
Description
_abck
1 year
This cookie is used to detect and defend when a client attempt to replay a cookie.This cookie manages the interaction with online bots and takes the appropriate actions.
ak_bmsc
2 hours
This cookie is used by Akamai to optimize site security by distinguishing between humans and bots
ASP.NET_SessionId
session
Issued by Microsoft's ASP.NET Application, this cookie stores session data during a user's website visit.
AWSALBCORS
7 days
This cookie is managed by Amazon Web Services and is used for load balancing.
AWSELB
session
Associated with Amazon Web Services and created by Elastic Load Balancing, AWSELB cookie is used to manage sticky sessions across production servers.
bm_sz
4 hours
This cookie is set by the provider Akamai Bot Manager. This cookie is used to manage the interaction with the online bots. It also helps in fraud preventions
cf_use_ob
past
Cloudflare sets this cookie to improve page load times and to disallow any security restrictions based on the visitor's IP address.
cookielawinfo-checkbox-advertisement
1 year
Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional
11 months
The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance
11 months
This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
csrftoken
past
This cookie is associated with Django web development platform for python. Used to help protect the website against Cross-Site Request Forgery attacks
gdpr
session
Determines whether the visitor has accepted the cookie consent box. This ensures that the cookie consent box will not be presented again upon re-entry.
JSESSIONID
session
The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application.
opt_out
1 year
This cookie is used for preventing the installation of third party advertiser or other cookies on the browser.
PHPSESSID
session
This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
ts
1 year 1 month
PayPal sets this cookie to enable secure transactions through PayPal.
usprivacy
1 year 1 month
This is a consent cookie set by Dailymotion to store the CCPA consent string (mandatory information about an end-user being or not being a California consumer and exercising or not exercising its statutory right).
viewed_cookie_policy
11 months
The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Cookie
Duration
Description
__atuvc
1 year 1 month
AddThis sets this cookie to ensure that the updated count is seen when one shares a page and returns to it, before the share count cache is updated.
__atuvs
30 minutes
AddThis sets this cookie to ensure that the updated count is seen when one shares a page and returns to it, before the share count cache is updated.
__cf_bm
30 minutes
This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
_uid
5 months 27 days
AddThis sets this cookie to enable the visitors to share the web pages on social platforms via sharing buttons on the website.
audit
1 year
This cookie is set by Rubicon Project and is used for recording cookie consent data.
bcookie
2 years
LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bwid
1 year
This cookie is set by the provider The Guardian. This cookie is used for embedding The Guardian video player.
chid
session
This cookie is set by the provider Mixcloud. This cookie is used for implementing audio files on the website. It enables the embedding of Mix Cloud audio player.
ELOQUA
1 year 1 month
The domain of this cookie is owned byOracle Eloqua. This cookie is used for email services. It also helps for marketing automation solution for B2B marketers to track customers through all phases of buying cycle.
geo
never
This cookie is used for identifying the geographical location by country of the user.
lang
session
LinkedIn sets this cookie to remember a user's language setting.
lidc
1 day
LinkedIn sets the lidc cookie to facilitate data center selection.
mx_t
10 years
This cookie is set by the provider Mixcloud. This cookie is used for implementing audio files on the website. It enables the embedding of Mix Cloud audio player.
previmpr
session
This cookie is set by the provider Mixcloud. This cookie is used for implementing audio files on the website. It enables the embedding of Mix Cloud audio player.
sp_landing
1 day
The sp_landing is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
sp_t
1 year
The sp_t cookie is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
v1st
1 year 1 month
The v1st cookie is set by TripAdvisor to collect details about how visitors use the website, by displaying user reviews, awards and information received on the TripAdvisor community.
vsid
30 minutes
This cookie supports the website's live support provider.
X-AB
1 day
Cookie associated with embedding content from Snapchat.
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Cookie
Duration
Description
_gat
1 minute
This cookie is installed by Google Universal Analytics to restrain request rate and thus limit the collection of data on high traffic sites.
_uetsid
never
Bing Ads sets this cookie to engage with a user that has previously visited the website.
_uetvid
never
Bing Ads sets this cookie to engage with a user that has previously visited the website.
AKA_A2
1 hour
This cookie is set by Akamai. This cookie is used for DNS Prefetch and HTTP2 Push. It helps in improving the performance.
AWSALB
7 days
AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.
countryCode
session
This cookie is used for storing country code selected from country selector.
dmvk
session
The dmvk cookie is set by Dailymotion to record data of visitor behaviour on the website.
SRM_B
1 year 24 days
Used by Microsoft Advertising as a unique ID for visitors.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Cookie
Duration
Description
__gads
1 year 24 days
The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites.
_cb
never
This cookie stores a visitor's unique identifier for Chartbeat tracking on the site.
_cb_svref
never
Chartbeat sets this cookie to store the original referrer for the site visitor. This cookie expires after 30 minutes but the timer is reset if the visitor visits a new page on the site before the cookie expires.
_chartbeat2
never
Chartbeat sets this cookie to store information about when a visitor has visited the site before. This helps to distinguish between new, returning, and loyal visitors.
_ga
2 years
The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_Q52H441J15
2 years
This cookie is installed by Google Analytics.
_ga_TM9YBZ48VY
2 years
This cookie is installed by Google Analytics.
_gat_gtag_UA_1203094_4
1 minute
Set by Google to distinguish users.
_gid
1 day
Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_omappvp
11 years
The _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs
20 minutes
The _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.
_parsely_session
30 minutes
This cookie is used to track the behavior of a user within the current session.
_parsely_visitor
1 year 1 month
This cookie store anonymous user idnetifier to determine whether a visitor had visited before, or if its a new visit.
ad-id
8 months 17 days
The ad-id cookie is provided by Amazon Advertising for tallying user actions by tracking ad clicks on other websites, to provide targeted content.
ai_user
1 year
A unique user identifier cookie, set by Microsoft Application Insights software, that enables counting of the number of users accessing the application over time.
ajs_anonymous_id
never
This cookie is set by Segment to count the number of people who visit a certain site by tracking if they have visited before.
ajs_group_id
never
This cookie is set by Segment to track visitor usage and events within the website.
ajs_user_id
never
This cookie is set by Segment to help track visitor usage, events, target marketing, and also measure application performance and stability.
at-rand
never
AddThis sets this cookie to track page visits, sources of traffic and share counts.
CONSENT
2 years
YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
demdex
5 months 27 days
The demdex cookie, set under the domain demdex.net, is used by Adobe Audience Manager to help identify a unique visitor across domains.
ELQSTATUS
1 year 1 month
This cookie is set by Eloqua. This cookie is used by PwC to track individual visitors and their use of site. This is set on the first visit of the visitor to the site and updated on subsequent visits.
GUC
1 year
The GUC cookie is set by Yahoo for Yahoo conversion tracking.
s_vi
2 years
An Adobe Analytics cookie that uses a unique visitor ID time/date stamp to identify a unique vistor to the website.
session-id
68 years 18 days 3 hours 14 minutes
Amazon Pay uses this cookie to maintain a "session" that spans multiple days and beyond reboots. The session information includes the identity of the user, recently visited links and the duration of inactivity.
session-id-time
68 years 18 days 3 hours 14 minutes
Amazon Pay uses this cookie to maintain a "session" that spans multiple days and beyond reboots. The session information includes the identity of the user, recently visited links and the duration of inactivity.
UID
2 years
Scorecard Research sets this cookie for browser behaviour research.
uu
68 years 18 days 3 hours 14 minutes
AdScale sets this cookie to target ads by registering the user's movements across websites.
uvc
1 year 1 month
Set by addthis.com to determine the usage of addthis.com service.
vuid
2 years
Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Cookie
Duration
Description
__Host-GAPS
2 years
This cookie allows the website to identify a user and provide enhanced functionality and personalisation.
__qca
1 year 26 days
The __qca cookie is associated with Quantcast. This anonymous data helps us to better understand users' needs and customize the website accordingly.
_fbp
3 months
This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_kuid_
session
The cookie, set by Krux Digital, registers a unique ID that identifies a returning user's device. The ID is used for targeted ads.
_pxhd
session
Used by Zoominfo to enhance customer data.
A1S
session
This cookie is associated with Yahoo Search Analytics and is used for advertising purposes.
ab
1 year
Owned by agkn, this cookie is used for targeting and advertising purposes.
ad-privacy
5 years 2 months 17 days
Provided by amazon-adsystem to make advertising messages more relevant to the users and their interests.
B
1 year
This Cookie is used by Yahoo to anonymously store data related to user's visits, such as the number of visits, average time spent on the website and what pages have been loaded. This data helps to customize website content to enhance user experience.
bkdc
5 months 27 days
Bluekai uses this cookie to build an anonymous user profile with data like the user's online behaviour and interests.
bkpa
5 months 27 days
Set by Bluekai, this cookie stores anonymized data about the users' web usage in an aggregate form to build a profile for targeted advertising.
bku
5 months 27 days
Bluekai uses this cookie to build an anonymous user profile with data like the user's online behaviour and interests.
CMID
1 year
Casale Media sets this cookie to collect information on user behavior, for targeted advertising.
CMPRO
3 months
CMPRO cookie is set by CasaleMedia for anonymous user tracking, and for targeted advertising.
CMPS
3 months
CMPS cookie is set by CasaleMedia for anonymous user tracking based on user's website visits, for displaying targeted ads.
f5_cspm
session
This cookie, set by PubMatic, is used to build a profile of user interests and to show relevant ads.
fr
3 months
Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE
1 year 24 days
Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
IMRID
1 year 24 days
The domain of this cookie is owned by Nielsen. The cookie is used for storing the start and end of the user session for nielsen statistics. It helps in consumer profiling for online advertising.
khaos
1 year
Rubicon Project sets this cookie as an internal user identifier that stores user data to be used for analytics.
lidid
2 years
This cookie is used to collect data on user behaviour and interaction to make advertisement on the website more relevant.
ljtrtb
session
Lijit Advertising Platform sets this cookie temporarily, when multiple partners pass their IDs to the platform simultaneously. To avoid conflicts, each partner's ID is stored using separate cookies, which are merged to the ljtrtb cookie when it is available.
loc
1 year 1 month
AddThis sets this geolocation cookie to help understand the location of users who share the information.
mc
1 year 1 month
Quantserve sets the mc cookie to anonymously track user behaviour on the website.
MUID
1 year 24 days
Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
NID
6 months
NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads.
permutive-session
never
This cookie is set by DoubleClick and is used for re-targeting, optimisation, reporting and attribution of online adverts.
personalization_id
2 years
Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
pxrc
2 months
This cookie is set by pippio to provide users with relevant advertisements and limit the number of ads displayed.
rlas3
1 year
RLCDN sets this cookie to provide users with relevant advertisements and limit the number of ads displayed.
sa-user-id
session
StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
sa-user-id-v2
session
StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
sc_at
1 year 24 days
The cookie is set by Snapchat to show relevant ads to the users by tracking user behaviour on Snapchat.
test_cookie
15 minutes
The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
uids
3 months
This cookie is set by Prebid Server. The cookies contains information that allows Prebid servers to distinguish between browsers and mobile devices. This information is then used to select advertisements delivered by the platform and measure the performance of the advretisement and attribute their payments.
uuid
session
MediaMath sets this cookie to avoid the same ads from being shown repeatedly and for relevant advertising.
uuid2
3 months
The uuid2 cookie is set by AppNexus and records information that helps in differentiating between devices and browsers. This information is used to pick out ads delivered by the platform and assess the ad performance and its attribute payment.
VISITOR_INFO1_LIVE
5 months 27 days
A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
wfivefivec
1 year 1 month
This cookie, set by DataXu, tracks the advertisement report which helps to improve the marketing activity.
YSC
session
YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices
never
YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id
never
YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId
never
This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests
never
This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
