Bitcoin Forum

Other => Meta => Topic started by: Shaolino on May 25, 2015, 06:37:48 PM



Title: Phishing mail ?
Post by: Shaolino on May 25, 2015, 06:37:48 PM
Anybody else got an email like that ?

noreply@[Suspicious link removed]. I regret to have to inform you that
some information about your account was obtained by an attacker who
successfully compromised the bitcointalk.org server. The following
information about your account was likely leaked:
 - Email address
 - Password hash
 - Last-used IP address and registration IP address
 - Secret question and a basic (not brute-force-resistant) hash of your
 secret answer
 - Various settings

You should immediately change your forum password and delete or change
your secret question. To do this, log into the forum, click "profile",
and then go to "account related settings".

If you used the same password on bitcointalk.org as on other sites, then
you should also immediately change your password on those other sites.
Also, if you had a secret question set, then you should assume that the
attacker now knows the answer to your secret question.

Your password was salted and hashed using sha256crypt with 7500 rounds.
This will slow down anyone trying to recover your password, but it will
not completely prevent it unless your password was extremely strong.

While nothing can ever be ruled out in these sorts of situations, I do
not believe that the attacker was able to collect any forum personal
messages.

I apologize for the inconvenience and for any trouble that this may cause.
-----BEGIN PGP SIGNATURE-----

iF4EAREIAAYFAlVhiGIACgkQxlVWk9q1keeUmgEAhGi8pTghxISo1feeXkUMhW3a
uKxLeOOkTQR5Zh7aGKoBAMEvYsGEBGt3hzInIh+k43XJjGYywSiPAal1KI7Arfs0
=bvuI
-----END PGP SIGNATURE-----


Title: Re: Phishing mail ?
Post by: achow101_alt on May 25, 2015, 06:40:49 PM
Everyone got the same email. For more info, check this topic in Meta: https://bitcointalk.org/index.php?topic=1067985.0


Title: Re: Phishing mail ?
Post by: iopq on May 25, 2015, 06:41:13 PM
The forum was down and it's not asking for you to do anything out of the ordinary. I certainly changed my password.


Title: Re: Phishing mail ?
Post by: Amph on May 25, 2015, 06:47:11 PM
how it is a pishing email, if there are no links or file to download? it can't really be, it just ask you to take more caution about the recent downside