Akka - Default trust account no longer hacked!

[Vod]

I can confirm that I'm back in control of my account.

Thanks again to Quickseller for the heads-up. Theymos for the quick acting. doingdoing3000, fronti and qwk for calling/messaging me and all others. I'm really impressed on how fast and well this was resolved.

It's late here so I will "fix" stuff (Post that were not by me, trust ratings, etc) tomorrow.

Welcome back.    Negative feedback removed.

[molecular]

I hope the hacker didn't do too much damage.

No, it seems he hasn't done much other than to PM some people, trying to to sell them their own Mail addresses  

wieviele etwa? how many, roughly?

[redsn0w]

I can confirm that I'm back in control of my account.

Thanks again to Quickseller for the heads-up. Theymos for the quick acting. doingdoing3000, fronti and qwk for calling/messaging me and all others. I'm really impressed on how fast and well this was resolved.

It's late here so I will "fix" stuff (Post that were not by me, trust ratings, etc) tomorrow.

Oh , perfect !  I've removed my negative feedback.

[Christian1998]

Nice Job
I know which site it is.

Best regards

[Acura3600]

My Account was also hacked. My Emailadress was also on GMX. But how i can received my Account "Acura360" back?

Passwordreset don´t work for me, i didn´t received the passwordreset email.

[redsn0w]

My Account was also hacked. My Emailadress was also on GMX. But how i can received my Account "Acura360" back?

Passwordreset don´t work for me, i didn´t received the passwordreset email.

Follow this procedure : Recovering hacked accounts or accounts with lost passwords.

[shorena]

My Account was also hacked. My Emailadress was also on GMX. But how i can received my Account "Acura360" back?

Passwordreset don´t work for me, i didn´t received the passwordreset email.

Scheint viele Deutsche zu betreffen gerade.

translation: Seems to happen to plenty germans lately.

[Akka]

wieviele etwa? how many, roughly?

Not very many. Most of the PMs are between People trying to confirm the Hacked account. I just looked through the the first couple yesterday and thought it was more.

My Account was also hacked. My Emailadress was also on GMX. But how i can received my Account "Acura360" back?

Passwordreset don´t work for me, i didn´t received the passwordreset email.

Scheint viele Deutsche zu betreffen gerade.

translation: Seems to happen to plenty germans lately.

True.

gmx is a german website so it's only logical to assume that the gmx exploit affects mostly germans.

[shorena]

-snip-

True.

gmx is a german website so it's only logical to assume that the gmx exploit affects mostly germans.

Yes, I changed my mailaddress/password for the board after reading this thread. Just to be safe.

Edit: I also posted a warning in the german section, link: https://bitcointalk.org/index.php?topic=918752.0

[molecular]

Nice Job
I know which site it is.

What do you mean "which site"?

[Spekulatius]

it is probably the spekulatius account https://bitcointalk.org/index.php?action=profile;u=37537

data matches. is spekulatius confirmed to have been taken?

spoderman offered to sell it to me very shortly after its password was reset via email (see PM dump on page two of this thread) even though it hadn't posted in months. Someone also logged in to it yesterday but made no posts.

He refused to confirm that he was able to confirm ownership which leads me to believe that he cannot do so.

Unfortunately, those PMs, even if they are really in your inbox, prove nothing.
I'm not implying that you are lying, or that Spekulatius is not compromised, but there's simply no proof.
All it shows is that Spoderman asked you how much you would pay for the Spekulatius account.
I could ask you how much you would pay for the theymos account, what would that prove?

PM's with spoderman:
[...]

https://bitcointalk.org/index.php?action=profile;u=37537 - how much would you pay for this account?
Don't low ball me. Im not doing any negotiating either.
I'll go first so keep that in consideration when you offer your price
Thanks

Before I would be willing to make any kind of offer I would need confirmation that you can prove ownership of the account. This would mean a signed bitcoin message. If you only have a signed message transferring ownership to another account then that would be fine, however you would need to do the same with the 2nd account (either on or off the forum).

Don't worry about it then, either way you are getting the account, all this verification nonsense isn't required for an offer.
If you give me a valid offer, i'll give you the account FIRST. That's my offer.

I was indeed hacked!
One day I read that my password was reset but didnt think it was anything to worry about, because an attacker would still have to get to me 2nd email account which my bitcointalk account is linked to, then I go check the next day anyway and BAM! Im locked out both of bitcointalk and of my email account. Turns out my email was hacked and used to send spam some days before my password here was reset. Fortunately I posted an address that I still control some time ago and could by signing it prove to theymos that I am the rightful owner, so he reset my email and password (thank god). It took about 2 days. So just to make it clear: I WOULD NEVER SELL THIS ACCOUNT! SPODERMEN IS EITHER HACKED OR AN ORIGINAL SCAMMER!

--> The only problem I have now is that my trust score was ruined during those few days and I have no idea who Spodermen scammed in my name to earn this reputation! What can I do to find out? Thx

[Spekulatius]

My account is with web.de, which belongs, i think, to gmx. Is it safe if I have changed my password or should I move to another provider?

[Mitchell]

Spekulatius, could you get theymos to confirm this? That would help your case a lot.

[Akka]

My account is with web.de, which belongs, i think, to gmx. Is it safe if I have changed my password or should I move to another provider?

If it's the same exploit used in gmx, changing you password will not be enough.

It's a pain, I know (have been using my gmx for a lot of stuff) but you should consider this account unsafe.

[theymos]

Spekulatius, could you get theymos to confirm this? That would help your case a lot.

Confirmed.

[Mitchell]

Confirmed.

Thank you very much for confirming this. Glad to see that this was resolved.

[molecular]

My account is with web.de, which belongs, i think, to gmx. Is it safe if I have changed my password or should I move to another provider?

Thanks for this info. Another indication (apart from the exploit offer on hackforums) that indeed not only gmx.de, but also web.de and potentially other 1+1 (germany company that owns these brands) suffer from the exploit.

Yes, definitely you should switch provider. My gmx password is repeatedly being changed by the attacker since mid-December. In recent times there had been periods where he took over my account every second day.

[Quickseller]

My account is with web.de, which belongs, i think, to gmx. Is it safe if I have changed my password or should I move to another provider?

I am glad that you got your account back. Theymos really should give a warning to people not to use GMX and et el email addresses for their forum accounts.


I figured I should post there here. Per the message I received from Spekulatius the hacker used the below email and IP address

-snip-
The attacker used the email screams@live.com and the IP 73.166.140.216.
-snip-

[redsn0w]

I figured I should post there here. Per the message I received from Spekulatius the hacker used the below email and IP address

-snip-
The attacker used the email screams@live.com and the IP 73.166.140.216.
-snip-

I received the same PM , however welcome back @Spekulatius.  ( I hope you're not coming to use again  GMX or web.de). I simple gmail address with the 2FA it's the better solution and obviously secure .

[Christian1998]

(...)
I received the same PM , however welcome back @Spekulatius.  ( I hope you're not coming to use again  GMX or web.de). I simple gmail address with the 2FA it's the better solution and obviously secure .

It is better when you have your own Mailserver For example with autoban (Try it out on my Server if you want, try 2 times to login - then you get banned for 1 Year: Admin@Dice-Win.com)
Best regards