Bitcoin Forum
June 27, 2019, 07:25:30 AM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: Account compromised?  (Read 611 times)
podyx
Legendary
*
Offline Offline

Activity: 1806
Merit: 1012



View Profile
September 14, 2017, 06:36:41 PM
Last edit: September 14, 2017, 10:05:27 PM by podyx
 #1

Hey, I was looking through my posts and saw this

Time for more cheap coins  Kiss

And I have not posted that, how is this possible?
Crypto Casino Since 2014
Level Up & Get Even More Rewards!
Daily Treasure Chest
& Much More
Roll Hunt
Rakeback
Blackjack
Jackpot
Dice
Slots
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1561620330
Hero Member
*
Offline Offline

Posts: 1561620330

View Profile Personal Message (Offline)

Ignore
1561620330
Reply with quote  #2

1561620330
Report to moderator
1561620330
Hero Member
*
Offline Offline

Posts: 1561620330

View Profile Personal Message (Offline)

Ignore
1561620330
Reply with quote  #2

1561620330
Report to moderator
1561620330
Hero Member
*
Offline Offline

Posts: 1561620330

View Profile Personal Message (Offline)

Ignore
1561620330
Reply with quote  #2

1561620330
Report to moderator
onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 14, 2017, 07:39:20 PM
 #2

I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
podyx
Legendary
*
Offline Offline

Activity: 1806
Merit: 1012



View Profile
September 14, 2017, 08:02:17 PM
Last edit: September 14, 2017, 08:12:40 PM by podyx
 #3

I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 14, 2017, 08:29:43 PM
 #4

I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.

aleksej996
Sr. Member
****
Offline Offline

Activity: 476
Merit: 326


Do not trust the government


View Profile WWW
September 14, 2017, 08:34:39 PM
 #5

Hey, I was looking through my posts and saw this

Time for more cheap coins  Kiss

And I have not posted that, how is this possible?

Do you live alone?
This is a good time to question your sanity Cheesy

Otherwise, sure it is possible you got hacked. Your account is old and there were leaks in the past (I believe 2015, so you are one of those accounts).
There is this website as well https://haveibeenpwned.com/ but it is obvious that your account was one of them. I hope you changed your password since then.
podyx
Legendary
*
Offline Offline

Activity: 1806
Merit: 1012



View Profile
September 14, 2017, 08:35:17 PM
 #6

I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.

No, I didn't have to reset password, just changed it because I saw that post. My computer has a strong password but I logged in on bitcointalk on my phone, maybe that is why?
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 14, 2017, 08:41:48 PM
 #7

I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.

No, I didn't have to reset password, just changed it because I saw that post. My computer has a strong password but I logged in on bitcointalk on my phone, maybe that is why?

That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).

Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).

podyx
Legendary
*
Offline Offline

Activity: 1806
Merit: 1012



View Profile
September 14, 2017, 09:02:21 PM
 #8

How would they get access to bitcointalk account from google hack though if that was the case?
onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 14, 2017, 09:11:38 PM
 #9

That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).
Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).

What? How does phone being unattended for few moments relate to someone posting as him? Im pretty sure he did not leave the phone unattended on public place, so that comment makes no sense at all Roll Eyes
Also he just said that he has a strong password, and google do not really get any public data breaches at least so what do you mean by "hacking"? Also only nandroid backups store such information, as far as i know, so how is a backup online related to this?

How would they get access to bitcointalk account from google hack though if that was the case?

Google has not had a single public data breach recently, so there's no way that the bitcoin password has leaked via that way. However there was a Spambot leak recently, which might have caused your password to leak, if you used same password on any of the leaks.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 14, 2017, 10:56:16 PM
 #10

That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).
Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).

What? How does phone being unattended for few moments relate to someone posting as him? Im pretty sure he did not leave the phone unattended on public place, so that comment makes no sense at all Roll Eyes
Also he just said that he has a strong password, and google do not really get any public data breaches at least so what do you mean by "hacking"? Also only nandroid backups store such information, as far as i know, so how is a backup online related to this?
Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.
Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.

onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 14, 2017, 11:47:52 PM
 #11

Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.

Yeah but this requires root, and a root user would know the risks of producing such backups. What app are you talking about right now?


Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

What kind of "friend" would go to your phone, and start using it? Also i doubt that he had his screen on without a screen lock. Also it does not really matter, since i think that the point of this thread was to discuss technical details rather than  discussing people who could possibly access the phone.

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.

You cannot bruteforce a google account, because after few invalid tries it does ask you for captcha, so that makes no sense. Would you care to actually define the technical details of the attack  you are meaning, and there are no any tools that actually can solve recaptchas as far as i know.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 16, 2017, 05:25:37 PM
 #12

Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.

Yeah but this requires root, and a root user would know the risks of producing such backups. What app are you talking about right now?


Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

What kind of "friend" would go to your phone, and start using it? Also i doubt that he had his screen on without a screen lock. Also it does not really matter, since i think that the point of this thread was to discuss technical details rather than  discussing people who could possibly access the phone.

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.

You cannot bruteforce a google account, because after few invalid tries it does ask you for captcha, so that makes no sense. Would you care to actually define the technical details of the attack  you are meaning, and there are no any tools that actually can solve recaptchas as far as i know.

1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 16, 2017, 05:31:55 PM
 #13

1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
aleksej996
Sr. Member
****
Offline Offline

Activity: 476
Merit: 326


Do not trust the government


View Profile WWW
September 16, 2017, 05:45:50 PM
 #14

1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.

Well there are about 50 million unemployed Chinese, so I think captchas should be considered effectively broken.  Grin
onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 16, 2017, 05:50:36 PM
 #15

Well there are about 50 million unemployed Chinese, so I think captchas should be considered effectively broken.  Grin

However humans do not count as bots, so what are you referring to? Jackg said "bots"

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 16, 2017, 07:27:22 PM
 #16

1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.

1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely. Along with the fact you can test a few passwords and change IP if yours is dynamic. You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).

konco_kenthel
Full Member
***
Offline Offline

Activity: 378
Merit: 100


View Profile
September 17, 2017, 09:38:30 AM
 #17

There may be people who do not like your opinion. But do not make the problem bigger and always give a better opinion to prove to them that we can still compete with the safe atmosphere to keep in touch.

onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 17, 2017, 10:13:26 AM
 #18

1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

I just checked the  Seagate backup, and there is no option for backupping any kind of application data. Only Photos, Videos, Music, Contacts, Call log and Messages. So care to repeat what you said?

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely.

Exactly. Not really possible to bypass it or cheat it.

You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).

I personally use unique 65-100char passwords, so data breaches cannot touch me any more. Also a possiblity of keylogger is possible as well, or some kind of data leak.
you would be the luckiest person in the world to get 8 alphanumerics done in 12 rights.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1414
Merit: 1268


https://bit.ly/2FR9nyn - free python tutorials


View Profile
September 17, 2017, 11:01:37 AM
 #19

1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

I just checked the  Seagate backup, and there is no option for backupping any kind of application data. Only Photos, Videos, Music, Contacts, Call log and Messages. So care to repeat what you said?

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely.

Exactly. Not really possible to bypass it or cheat it.

You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).

I personally use unique 65-100char passwords, so data breaches cannot touch me any more. Also a possiblity of keylogger is possible as well, or some kind of data leak.
you would be the luckiest person in the world to get 8 alphanumerics done in 12 rights.


Correct me if I'm wrong but a password that length would probably require copy and pasting. So it'll face any viruses that exist with access to the dashboard. Or any key loggers (if you type the 65 characters).
Also, passwords to websites are sent over Internet and while unlikely it's possible a potential hacker can gain access to the connection (by piggybacking) on it.

onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 17, 2017, 11:24:55 AM
 #20

Correct me if I'm wrong but a password that length would probably require copy and pasting. So it'll face any viruses that exist with access to the dashboard. Or any key loggers (if you type the 65 characters).
Also, passwords to websites are sent over Internet and while unlikely it's possible a potential hacker can gain access to the connection (by piggybacking) on it.

Keepass, lastpass etc. are great solutions, for password managing, since you can use 2FA and OTP solutions. On these solutions all of the passwords are encrypted with master password, and lastpass has support for yubikey at least. Atleast lastpass supports autofilling. However if we assume that the computer has malware, it does not matter really. However if you have a great security overall, and careful about what you download etc, those tools can be really useful.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!