2014-05-12, 09:51 | Link #21 | |
AS Oji-kun
Join Date: Nov 2006
Age: 74
|
Quote:
But I wouldn't worry much about this. I have thousands of IP addresses in my logs, so does anyone else who runs a web server. If you have a computer connected to the Internet for any length of time, the chances are good that it will be scanned by some automated hacking process out there. My logs are full of these events, too. So just because someone has your IP doesn't mean there's much benefit there.
__________________
|
|
2014-05-12, 09:51 | Link #22 |
Seishu's Ace
Author
Join Date: Dec 2005
Location: Kobe, Japan
|
Damn, it's midnight here, I have to be out early tomorrow and I'm wracking my brain trying to figure out every place that I could possibly have used a similar password. What a royal pain in the ass.
__________________
|
2014-05-12, 09:57 | Link #24 |
Senior Member
Join Date: Aug 2007
|
Whoa, this is pretty big.
But I have always separate my "real" online persona (of which there is almost none because I am such a loner), and my "for fun" various accounts and stuff. Good effort in carrying the mitigation effort. Hope the damage is minimised. |
2014-05-12, 10:13 | Link #28 |
Senior Member
Join Date: Nov 2009
|
While I've been reading up on news and anime here once in a while, my actual active time has been very minimal at best. Haven't noticed anything concerning private messages when I am on.
Most of my passwords related to real world or important matters were different from here so I shouldn't worry too much. Don't know if my limited activity would be enough to be considered an old or dormant account given the situation however. |
2014-05-12, 10:17 | Link #29 | |||
…Nothing More
Administrator
Join Date: Mar 2003
Age: 44
|
Quote:
Quote:
Quote:
In this case it isn't clean how long ago the account was used; that is still under investigation. I must admit I don't know the level of activity due to being busy off-site myself. In the interests of accuracy, the account did not have administrator privileges, but a moderator privileges. The issues was less the level of privilege and more the fact that any privilege was still there, when maybe we should have removed them a long while ago. The account actually dates back before this forum before forked (split into two different forums). |
|||
2014-05-12, 10:17 | Link #30 |
Enjoying Snack Time!
|
Whoa. This is a messy issue. When I couldn't log on I thought I did something that got me banned, but that's thankfully not the case.
"Takes sighs of relief" I made sure to check my profile and PMs and so far nothing alarming on my end, and I had sure other info regarding my user name wasn't shared. It's nice to that measures are taken shape and I can't wait to see what they'll be. It's a worrying issue but I think it'll be okay for the time being.
__________________
|
2014-05-12, 10:27 | Link #31 |
True Dragon
Join Date: Nov 2013
Location: Riding on Great Red head
Age: 28
|
Is good i`m paranoic and my passwords are 35 characters long . The IP if may add , can be find out very fast if you talk with someone on facebook or messenger . The most important problem here was the md5 hash but if you`re not using the same password on every site you log in you don`t have a problem
__________________
|
2014-05-12, 10:34 | Link #32 |
Senior Member
Join Date: Jul 2010
Age: 33
|
Luckily I don't use the same password on here with other important sites (with few characters different only, perhaps not-so safe). But I still change the password for my accounts on most sites anyway.
Since I planned to change password (on almost all sites I often use) on long time ago, but I always felt too lazy to do it. Perhaps now is the 'best' time to settle this 'case' ? |
2014-05-12, 10:37 | Link #33 |
Senior Member
Join Date: Jan 2009
|
Realistically a lot of people use the same passwords for multiple sites, and a lot of people probably forgot about this website while still having an account and they got their information stolen, that's a real problem. IP addresses also aren't nessarily dynamic depending on your country/ISP afaik.
Is it even necessary for moderators to know private info such as passwords and IP address and such? |
2014-05-12, 10:55 | Link #37 | |
Senior Member
Join Date: Feb 2009
|
Quote:
As for IP addresses, yes that's something that moderators generally need to know. It's the chief means of spotting someone using an alt to evade a ban, or serve as a sock-puppet. That was the time required to realize there was a problem, determine the extent of the problem, and fix the problem. Telling everyone to change passwords while security is still broken can lead to more passwords being compromised. Leaving users with two passwords it's no longer safe to use, instead of just one. |
|
2014-05-12, 10:56 | Link #38 |
Call me MK! :)
Graphic Designer
Join Date: Oct 2009
Location: The top of the world.
Age: 34
|
Question: With the info that the hacker collected. What can he/she do with it?
Few months ago I had my Twitter account hacked. And person was using my account for spamming. But I deleted all the spam messages, and changed the password. And that took care of it.
__________________
|
2014-05-12, 11:07 | Link #39 | |
Senior Member
Join Date: Feb 2009
|
Quote:
Same name/password for other anime forums? Not that big a deal. Same name/password for Amazon/Apple? Big problem. |
|
|
|