|
Title: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: s1lverbox on January 04, 2014, 11:19:15 AM Hi i did open my mozilla client to check emails and was flooded by more than 100 emails from bitcointalk that password has been forgot.
Photos of my mozilla: https://i.imgur.com/y5tQPCk.png https://i.imgur.com/MILAejC.png and one message: https://i.imgur.com/oCgTx3B.png and now to check who trying to get access: http://217.174.254.150.ipaddress.com/ (http://217.174.254.150.ipaddress.com/) which is proxy. so someone trying to guess or get access to my account. Anyone have same issue? Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: jackjack on January 04, 2014, 11:43:40 AM The forum doesn't block images but you must put the image URL and imgur.com/xxx isn't the image URL
Put i.imgur.com instead Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: s1lverbox on January 04, 2014, 11:54:59 AM The forum doesn't block images but you must put the image URL and imgur.com/xxx isn't the image URL Put i.imgur.com instead Thanks for advice. Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: jackjack on January 04, 2014, 11:57:35 AM Hmm maybe the guy thinks he has access to your mail account... I'd change the pass.
If it continues spamming you should ask theymos to do something. Maybe banning that IP or limiting the number of passworg-forgotten requests per hour. Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: s1lverbox on January 04, 2014, 12:05:50 PM Hmm maybe the guy thinks he has access to your mail account... I'd change the pass. If it continues spamming you should ask theymos to do something. Maybe banning that IP or limiting the number of passworg-forgotten requests per hour. I thought that forum have this feature about flooding with login attempts. but obviously not. Plus the fact that even if Ip will be banned -its only proxy service. Password already changed for very flippin difficult. Plus 2 way authentication. Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: jameschase on January 04, 2014, 04:19:39 PM Hmm maybe the guy thinks he has access to your mail account... I'd change the pass. I know next to nothing about this thingies, but maybe it's the exact think this nasty man wants? So he can capture that data, while now he can't? (Because for evample s1lverbox set to be logged in forever, so he doesn't have to type his pass while logging) Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: jackjack on January 04, 2014, 05:33:48 PM Hmm maybe the guy thinks he has access to your mail account... I'd change the pass. I know next to nothing about this thingies, but maybe it's the exact think this nasty man wants? So he can capture that data, while now he can't? (Because for evample s1lverbox set to be logged in forever, so he doesn't have to type his pass while logging) Sorry, I meant the mail pass Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: DeboraMeeks on January 04, 2014, 06:25:36 PM Well what is his goal with this ? it looks like that persons just spamming your inbox as using the "forgot my password" function just sends an e-mail and not refreshing the pass (unless you click) and if that person had access to your e-mail it wouldn't require more than one.
Is this some kind of DDOS attack? and doesn't the website have some limitations on it? Title: Re: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] Post by: s1lverbox on January 04, 2014, 06:57:22 PM Well what is his goal with this ? it looks like that persons just spamming your inbox as using the "forgot my password" function just sends an e-mail and not refreshing the pass (unless you click) and if that person had access to your e-mail it wouldn't require more than one. Is this some kind of DDOS attack? and doesn't the website have some limitations on it? What i done at the beggining, i posted image with link to reset the password. Maybe someone tried to get image like and just type letter by letter and number by number in to search bar. Once i realised link is visible i changed password at forum, secured my email with 2 authentication code and deleted image from post. I dont know. Im not good in any of these hacking stuff but once you got within 2-3 hours more than 140 attempts to reset your password you asking yourselve questions. Obviously bitcointalk have no limitation in such thing like login or resetting password. If that would be DDOS attack its quite weird. |
