Pink Ranger’s Retribution: The Martha Root White Supremacist Hack 2026
Hacktivist Martha Root wiped three white supremacist sites live at CCC 2026. Explore how AI chatbots and poor security led to a 100GB data leak of extremist profiles.
A hacktivist dressed as a Pink Ranger deleted three white supremacist websites live on stage during a cybersecurity conference last week. At the annual Chaos Communication Congress (CCC) in Hamburg, the pseudonymous hacker known as Martha Root remotely wiped the servers of WhiteDate, WhiteChild, and WhiteDeal in real-time, sparking cheers from the audience.
Inside the Martha Root White Supremacist Hack
The targets of the operation were hubs for extremist ideology. WhiteDate was described as a dating app for racists, while WhiteChild focused on matching white supremacist genetic donors. Following the live wipe, the websites' administrator took to social media to label the act "cyberterrorism" and promised legal repercussions. However, as of January 5, 2026, all three platforms remain offline and inaccessible to their users.
Exploiting Poor Security with AI Chatbots
Root revealed that the infiltration was made possible by embarrassingly poor security hygiene. The hacker utilized AI chatbots to bypass verification processes and scrape user data. A significant discovery included precise geolocation metadata embedded in user-uploaded images, which effectively revealed the home addresses of over 6,500 users. Root mocked the "master race" narrative, noting that the group failed to master basic WordPress security before attempting world domination.
A 100GB Treasure Trove for Researchers
The impact extends beyond the website shutdowns. The non-profit collective DDoSecrets has received a dataset totaling 100GB, dubbed "WhiteLeaks." This data includes names, precise coordinates, and racial profiles of the users. Rather than a public dump, the collective is restricting access to verified journalists and researchers to ensure the data is used to expose extremist networks without causing unintended collateral harm.
Authors
Related Articles
A critical vulnerability in Starlette—downloaded 325 million times per week—puts millions of AI agent servers at risk, exposing stored credentials for email, databases, and third-party services.
GitHub confirmed hackers stole data from 3,800 internal repositories via a poisoned VS Code extension. Here's why developer tools are now the most dangerous attack surface in tech.
A Utah woman was sentenced to life in prison partly because of her Google searches and deleted texts. The Kouri Richins case reveals how digital footprints have become the courtroom's most reliable witness.
Dirty Frag gives low-privilege users root access on virtually every Linux distro. The exploit code leaked three days ago. Microsoft says attackers are already experimenting with it.
A critical vulnerability in Starlette—downloaded 325 million times per week—puts millions of AI agent servers at risk, exposing stored credentials for email, databases, and third-party services.
GitHub confirmed hackers stole data from 3,800 internal repositories via a poisoned VS Code extension. Here's why developer tools are now the most dangerous attack surface in tech.
A Utah woman was sentenced to life in prison partly because of her Google searches and deleted texts. The Kouri Richins case reveals how digital footprints have become the courtroom's most reliable witness.
Dirty Frag gives low-privilege users root access on virtually every Linux distro. The exploit code leaked three days ago. Microsoft says attackers are already experimenting with it.
Thoughts
Share your thoughts on this article
Sign in to join the conversation