1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

******* logging passwords? Just saw this thread over at TAZ

Discussion in 'Off Topic' started by Jake B., May 29, 2015.

Thread Status:
Not open for further replies.
  1. Jake B.

    Jake B. Well-Known Member

    Just saw @Lisa posted this thread over at TAZ. Found it a bit interesting, and figured it would be relevant to quote here.

    Original Thread
     
  2. Brogan

    Brogan XenForo Moderator Staff Member

    Would it be surprising if those involved in piracy are logging passwords of member accounts on their sites?

    More fool those for registering at and using those sites.
     
  3. Jake B.

    Jake B. Well-Known Member

    Not at all surprising. Though, it's doubtful that person was even registered on ******
     
  4. Lisa

    Lisa Well-Known Member

    The mod in question is checking his pc for rootkit, etc, to see if that's how the password was obtained. @MattW has been going through the server logs as well to see if he can spot anything.
     
  5. Brogan

    Brogan XenForo Moderator Staff Member

    I wasn't referring to that site.

    The quote in your opening post mentions '*******'s site'...
     
  6. Jake B.

    Jake B. Well-Known Member

    Ah yes, makes sense. Misread your post
     
  7. AdamD

    AdamD Well-Known Member

    Sounds more like a staff member guessed his password, based on passwords used at the ******* site? Would ******* or his team really go to that extreme to remove negative threads?
    His business must be borderline collapsing if he or his team are engaging in hacking now.
     
  8. Lisa

    Lisa Well-Known Member

    His PC came back clean so he thinks it was a brute force attempt.
     
  9. Alfa1

    Alfa1 Well-Known Member

  10. SneakyDave

    SneakyDave Well-Known Member

    So ******* is using a keylogger on his own site and then picking people that might be moderators at TAZ, and then trying those passwords (and slightly changing them) to gain access to TAZ to delete threads about *******?
     
  11. Alfa1

    Alfa1 Well-Known Member

    That is a possible explanation for what happened. It was my account that was being hacked. I have not been logged onto *******s website for a long time. So if this is what happened then the password was logged long ago.
     
  12. Steve F

    Steve F Well-Known Member

    What are talking about Mike? That thread has nothing to do with TAZ.

    Also there are server logs showing the offending party as logging in with @Alfa1 's account.
     
  13. The Forum Heroes

    The Forum Heroes Well-Known Member

    ok deleted as I misread.. noon and no sleep yet :(
     
    Jake B. likes this.
  14. Brogan

    Brogan XenForo Moderator Staff Member

    I'm not going to name the sites, but we are aware of key loggers being used on pirate sites which has resulted in accounts here being compromised.

    Anyone using a pirate site, for any reason, does so at their own risk.
     
    Glockie, BassMan, HWS and 7 others like this.
  15. Jake B.

    Jake B. Well-Known Member

    TBH, if they are using these sites they probably deserve it...
     
    The Forum Heroes likes this.
  16. SneakyDave

    SneakyDave Well-Known Member

    Passwords must have been similar enough (or the same) because wouldn't the perpetrator be locked out for a while after a few bad password guesses? Wouldn't those attempts be in the logs also?
     
    Last edited: May 29, 2015
  17. Lisa

    Lisa Well-Known Member

    From what we can see there are no failed attempts - four wrong guesses would have locked him out, you're right.
     
  18. Jeffin

    Jeffin Well-Known Member

    I think it's important to use different passwords for different sites. For ex, My google account may be really secure but if I have the same password on an unsecure website, then I'm very vulnerable to data theft from both the sites. I use lastpass to help me create and store random passwords. I highly recommend it.
     
  19. AdamD

    AdamD Well-Known Member

    Secure passwords and if possible, two way authentication via SMS message.
    LastPass is something I use all the time now, I can just click a button to generate a random password and never have to remember it again.
     
    BassMan, Jeffin and Lisa like this.
  20. Daniel Hood

    Daniel Hood Well-Known Member

    Good Ol' *******. Classic.
     
    Pereira, AdamD, Jake B. and 2 others like this.
Thread Status:
Not open for further replies.

Share This Page