GiveSendGo, a crowdfunding website that was used to obtain donations for the “Freedom Convoy” protest organized by Canadian truckers, was taken offline in an apparent hack and information about alleged donors leaked online.

On Sunday evening, the GiveSendGo domain started redirecting to a new domain — GiveSendGone[.]wtf – and show a video loop of Disney’s Frozen, as the first noted by daily item journalist Mikaël Thalen. The video was accompanied by text criticizing the fundraising site and linking it to the January 6 uprising in the United States.

GiveSendGo, which bills itself as “the number one Christian crowdfunding platform”, had already has established itself as the essential platform for a fundraiser to cover the legal fees of Trump supporters accused of participating in the Capitol insurrection.

It quickly became the number one fundraising choice for the so-called “Freedom Convoy” after the larger GoFundMe platform. said it would withhold millions of dollars in donations to truckers, citing police reports of violence and other illegal activity. Canadian banks had already begun blocking funds linked to the convoy, with TD freeze two personal accounts containing over $1 million in donor funding.

As donors flocked to the new platform, a security researcher TechCrunch alerted that an Amazon S3 bucket – a cloud storage service used to host online files – had been configured insecurely by GiveSendGo and exposed gigabytes of Freedom Convoy donor data, including photos and passport scans.

The cloud storage issue was reportedly resolved last week after TechCrunch notified GiveSendGo’s management team, and the latest hack appears to be a new site compromise.

The leaked donor information was obtained by the data leak hosting website Distributed Secrets Denialwhich gave access only to journalists and researchers due to the presence of sensitive personal information.

A copy of the data obtained by The edge contained nearly 93,000 entries, including names, email addresses, zip codes and country of origin. Of the email addresses listed in the database, a handful come from domains ending in “.gov,” a domain reserved for government entities, and appear to belong to employees of the TSA, Department of Justice, Bureau of Prisons and NASA.

The United States accounts for more than half of entries for the donor country, followed by Canada and Great Britain, which supports concerns raised in Canadian media that foreign money supported the protest.

A request for comment sent to GiveSendGo had not received a response at the time of publication.