James Donaldson () has been repeatedly lying about the events that occurred with Copperhead. I never had an employment agreement with Copperhead and it was explicitly agreed that I owned the code I was writing and had full control + ownership of the open source projects.
Conversation
It was explicitly agreed that the donations were to support my work. They were NOT donations to the company. That's nonsense. It isn't how it was presented to the people donating and it isn't what was agreed upon between us. He's going back on everything promised and agreed upon.
2
1
He stopped wanting the arrangement of the company building a business around independent open source projects and tried to take it over with legal threats and ultimatums. He expected me to give in out of fear and turn everything over to him, compromising security of the users.
1
2
He ended up seizing all the infrastructure and imploding the past incarnation of the projects. The work is continuing at github.com/AndroidHardeni and an incomplete archive of the actual old repositories is at github.com/AndroidHardeni. Copperhead didn't write it and doesn't own it.
1
1
2
James not only stole the majority of the donations but also the Twitter account representing my projects and security research / engineering. I had renamed it and he tricked Twitter support into handing over my account to him and claims it's a corporate account which it wasn't.
1
1
1
I haven't been able to get in touch with either Reddit or Twitter support. They're happy to help an abusive corporation silence someone along with handing sensitive conversation logs over to them. They refuse to even speak to me or give an explanation for what they've done.
1
3
This Tweet was deleted by the Tweet author. Learn more
They compromised the messages by giving them the account. It had a strong password, 2-factor authentication and was associated with my personal phone number for at least 3 years. It was using my personal danielmicay@gmail.com email address when they seized control of it too...
1
1
1
Twitter support rolled back the email address to the one used months prior (daniel.micay@copperhead.co) for them and then James was able to seize control via grabbing control of all the copperhead.co infrastructure since he registered the domain on his personal account.
1
2
1
I expect they would have turned over the account even if it had never used a copperhead.co email though. They have no respect for individuals or open source projects, only corporations. They won't even have a conversation with me or give more than an automated reply.
I don't understand what the point is of having 2-factor authentication via a security key and/or TOTP authenticator app if Twitter support will just happily turn over your account to someone else. What was the point of even having a phone number attached to the account for years?
2
5
This Tweet was deleted by the Tweet author. Learn more
You shouldn't be using it anymore. The final release of the real thing was in June and hasn't received any security updates since then. You should move to AOSP 9 or stock Android on a Pixel, or just move to an iPhone. The new "CopperheadOS" from the company is insecure garbage.
1
1
1
Show replies