My 4 year-old Sr.Member account with an activity over 400 was hacked today. On
https://bitcointalk.org/seclog.php it just says "password changed". Now if I try to recover my password, I don't receive the recovery email so I guess he changed it, too. The hacker also changed my profile signature to take advantage of signature campaigns.
I already sent a PM to Cyrus with a signed message with a bitcoin address I had associated with that account. Not sure how long this could take, though.
However, I can't figure out how the hacker managed to change my password and associated email. I guess he stole the bitcointalk cookie/session using javascript code from a malicious site. But in order to change the password and email you need to know the old password, so he obtained it somehow.
I usually have my password stored in Google Chrome. I rarely write it. Could the hacker have obtained it from Chrome itself? I thought it was secure enough, but now I have serious doubts about it.
I ask in order to secure my other accounts at other forums and change passwords accordingly. Any hint would be appreciated.
Thanks in advance.
