jambola2 (OP)
Legendary
 Offline
Activity: 1120
Merit: 1038
|
 |
October 31, 2013, 05:38:48 AM |
|
I had the same password for my mail as this forums.
I changed the forum password , but ignored changing my mail password , who would go there.
Apparently , my mail is visible on my profile.
Yesterday I got 3 suspicious , attempted logins to my account.
Google luckily blocked it. It was done from a VPN ( 3 logins from around the world in half an hour )
I changed my password , but just realised the seriousness.
It is not very likely that your forum password will matter on any other forums , but if you use it for your mail ID , you are going to have a bad time.
|
No longer active on bitcointalk, however, you can still reach me via PMs if needed.
|
|
|
|
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
|
Vod
Legendary
Offline
Activity: 3668
Merit: 3015
Licking my boob since 1970
|
|
October 31, 2013, 06:37:43 AM |
|
News: Change your forum password On the top of every page.  |
https://nastyscam.com - landing page up https://vod.fan - advanced image hosting - coming soon! OGNasty has early onset dementia; keep this in mind when discussing his past actions.
|
|
|
Dabs
Legendary
Offline
Activity: 3416
Merit: 1912
The Concierge of Crypto
|
|
October 31, 2013, 06:41:02 AM |
|
Keep all your accounts with different passwords on all websites (or services). Make sure all your passwords are long (16 characters or more, not a word, numbers, letters, symbols), and all the usual stuff.
|
|
|
|
|
Klubknuckle
|
|
October 31, 2013, 12:22:34 PM |
|
I had the same password for my mail as this forums.
I changed the forum password , but ignored changing my mail password , who would go there.
Apparently , my mail is visible on my profile.
Yesterday I got 3 suspicious , attempted logins to my account.
Google luckily blocked it. It was done from a VPN ( 3 logins from around the world in half an hour )
I changed my password , but just realised the seriousness.
It is not very likely that your forum password will matter on any other forums , but if you use it for your mail ID , you are going to have a bad time.
Just make sure you don't have the same password as any other account you created then your safe  |
|
|
|
deepceleron
Legendary
Offline
Activity: 1512
Merit: 1025
|
|
October 31, 2013, 12:33:20 PM |
|
The forum user accounts and passwords have not been widely reported to be compromised in a way consistent with employment of a forum data breach, I would look elsewhere for the source. Can you tell from logs if they actually had your password?
|
|
|
|
|
jambola2 (OP)
Legendary
Offline
Activity: 1120
Merit: 1038
|
|
October 31, 2013, 12:45:36 PM |
|
Yeah , they had my password , but google apparently blocks a log in if you are actively logged in already.
It was two attempts from China and one from USA ( obvious VPN )
|
No longer active on bitcointalk, however, you can still reach me via PMs if needed.
|
|
|
jambola2 (OP)
Legendary
Offline
Activity: 1120
Merit: 1038
|
|
October 31, 2013, 12:47:17 PM |
|
|
No longer active on bitcointalk, however, you can still reach me via PMs if needed.
|
|
|
|
Ecurb123
|
|
November 01, 2013, 06:18:48 PM |
|
I use and suggest a PW manager. Each account everywhere gets a new random PW of 16 charters.
|
|
|
|
|
Dabs
Legendary
Offline
Activity: 3416
Merit: 1912
The Concierge of Crypto
|
|
November 04, 2013, 04:14:08 AM |
|
Well, I can at least suspect that the attackers were able to read (unencrypted) private messages, since some coins moved from one address to another. The private key was probably extracted from the PMs.
Next time, must use encryption.
|
|
|
|
jambola2 (OP)
Legendary
Offline
Activity: 1120
Merit: 1038
|
|
November 04, 2013, 06:45:46 AM |
|
My password is moderately long , 11 characters , has no words and has a near equal distribution of letters , numbers and capitals.
Does not seem like it would be easy to brute-force open.
|
No longer active on bitcointalk, however, you can still reach me via PMs if needed.
|
|
|
b!z
Legendary
Offline
Activity: 1582
Merit: 1010
|
|
November 04, 2013, 11:39:49 AM |
|
Well, I can at least suspect that the attackers were able to read (unencrypted) private messages, since some coins moved from one address to another. The private key was probably extracted from the PMs.
Next time, must use encryption.
You were sending / storing private keys in PM? That is not a good idea. |
|
|
|
|
Dabs
Legendary
Offline
Activity: 3416
Merit: 1912
The Concierge of Crypto
|
|
November 05, 2013, 11:33:17 AM |
|
You were sending / storing private keys in PM? That is not a good idea.
Yeah, my mistake. I should have required them to use GPG. They were buying the key to sign messages on it, because I bought some chips using that particular key. The problem was some coins were then sent there. Then got spent away. Fortunately, the amount was small enough. |
|
|
|
|
Kimowa
|
|
November 05, 2013, 01:35:13 PM |
|
Thats why I never had same password for every account...
|
|
|
|
|
Nik1ab
|
|
November 05, 2013, 01:50:29 PM |
|
I had the same password for my mail as this forums.
I changed the forum password , but ignored changing my mail password , who would go there.
Apparently , my mail is visible on my profile.
Yesterday I got 3 suspicious , attempted logins to my account.
Google luckily blocked it. It was done from a VPN ( 3 logins from around the world in half an hour )
I changed my password , but just realised the seriousness.
It is not very likely that your forum password will matter on any other forums , but if you use it for your mail ID , you are going to have a bad time.
Why do you use SpyMail?  |
No signature ad here, because their conditions have become annoying.
|
|
|
jambola2 (OP)
Legendary
Offline
Activity: 1120
Merit: 1038
|
|
November 05, 2013, 04:20:00 PM |
|
I had the same password for my mail as this forums.
I changed the forum password , but ignored changing my mail password , who would go there.
Apparently , my mail is visible on my profile.
Yesterday I got 3 suspicious , attempted logins to my account.
Google luckily blocked it. It was done from a VPN ( 3 logins from around the world in half an hour )
I changed my password , but just realised the seriousness.
It is not very likely that your forum password will matter on any other forums , but if you use it for your mail ID , you are going to have a bad time.
Why do you use SpyMail? I use gmail.... |
No longer active on bitcointalk, however, you can still reach me via PMs if needed.
|
|
|
|
Nik1ab
|
|
November 05, 2013, 04:23:14 PM |
|
I had the same password for my mail as this forums.
I changed the forum password , but ignored changing my mail password , who would go there.
Apparently , my mail is visible on my profile.
Yesterday I got 3 suspicious , attempted logins to my account.
Google luckily blocked it. It was done from a VPN ( 3 logins from around the world in half an hour )
I changed my password , but just realised the seriousness.
It is not very likely that your forum password will matter on any other forums , but if you use it for your mail ID , you are going to have a bad time.
Why do you use SpyMail? I use gmail.... Thats exactly the same thing... |
No signature ad here, because their conditions have become annoying.
|
|
|
|
