Hack happened, to all affected by the hack to my account:

CB91710

Not Michael Sankar
Double Platinum Supporting Member
Silver Supporting Member
Joined
Jul 19, 2019
Messages
9,100
Reaction score
18,983
His/her English is a lot better than developers I’ve worked with in India :dunno:

Also, does nobody care a moderator’s account was so easily hacked? Is it a vulnerability in the forum software? Or phishing?
I am suspecting a vulnerability in the forum software, given that it happened to two (at least) members here, and at least one on Strat Talk.

That's not to say that any passwords were compromised... the vulnerability could be a back-door method of changing a user's password without using email verification, the server logs will show how the PW change was done, whether being actually logged in through the UserCP, or through an exploit of the "Forgot Password" option.
 
  • Like
Reactions: ehb

RCCola

Senior Member
Joined
May 22, 2008
Messages
1,198
Reaction score
195
I am suspecting a vulnerability in the forum software, given that it happened to two (at least) members here, and at least one on Strat Talk.

That's not to say that any passwords were compromised... the vulnerability could be a back-door method of changing a user's password without using email verification, the server logs will show how the PW change was done, whether being actually logged in through the UserCP, or through an exploit of the "Forgot Password" option.
I would think mods should have 2FA enabled
 

CB91710

Not Michael Sankar
Double Platinum Supporting Member
Silver Supporting Member
Joined
Jul 19, 2019
Messages
9,100
Reaction score
18,983
I would think mods should have 2FA enabled
Is that an option on this forum? On the PC/Web interface?

Regardless, if an exploit was discovered, that could/would bypass any authentication.
 

ehb

Chief Discombobulator
Gold Supporting Member
Joined
Feb 20, 2013
Messages
38,047
Reaction score
159,113
I've two stepped mine too...

I don't know if'n PBR is a good enough password by its own self... Somebody might guess it sometime down the road...

Got to keep up with the times...
 

JonCanfield

Random Yahoo
Gold Supporting Member
Joined
Aug 15, 2017
Messages
10,512
Reaction score
30,118
I bet nobody gets a Walmart gift card either
 


Latest Threads



Top