#1  
Old 29-04-2017, 10:27 PM
brian nordstrom (As avatar)
Registered User

brian nordstrom is offline
 
Join Date: Apr 2007
Location: Perth WA
Posts: 4,374
Hackers

Hi guys , just a heads up
Spammers are active here in IIS , Password change time I think
Brian.
Reply With Quote
  #2  
Old 29-04-2017, 11:59 PM
PCH's Avatar
PCH (Paul)
Registered User

PCH is offline
 
Join Date: Feb 2007
Location: Perth WA
Posts: 2,296
Why - what would that do?

Just asking

Last edited by PCH; 30-04-2017 at 12:18 AM.
Reply With Quote
  #3  
Old 30-04-2017, 08:17 AM
brian nordstrom (As avatar)
Registered User

brian nordstrom is offline
 
Join Date: Apr 2007
Location: Perth WA
Posts: 4,374
Dont then , simple .
Brian.
Quote:
Originally Posted by PCH View Post
Why - what would that do?

Just asking
Reply With Quote
  #4  
Old 30-04-2017, 09:24 AM
LostInSp_ce's Avatar
LostInSp_ce
Unregistered User

LostInSp_ce is offline
 
Join Date: Mar 2017
Posts: 754
Paul, they might be phishing around the site and may have possibly hacked some or all users passwords. Allowing them to easily hijack an account/s and use it to spam all over the site. If you're thinking that changing your password is pointless it's not. It could have taken them weeks or months to get it and so by changing it sets them back again and they'll most likely lose interest and hopefully move on. It's not a bad thing either to change it regularly which can help minimise the risk and the stronger your password is the longer it will take to be cracked.

You can test one here
https://www.betterbuys.com/estimatin...racking-times/
Reply With Quote
  #5  
Old 30-04-2017, 09:29 AM
LewisM's Avatar
LewisM
Novichok test rabbit

LewisM is offline
 
Join Date: Aug 2012
Location: Somewhere in the cosmos...
Posts: 10,388
OMG, the hackers stole your "a" in your online name!

It starts easy...
Reply With Quote
  #6  
Old 30-04-2017, 09:31 AM
LewisM's Avatar
LewisM
Novichok test rabbit

LewisM is offline
 
Join Date: Aug 2012
Location: Somewhere in the cosmos...
Posts: 10,388
Hmmm. My current password came back in millenial time frame. i think I'll be OK.
Reply With Quote
  #7  
Old 30-04-2017, 09:38 AM
LostInSp_ce's Avatar
LostInSp_ce
Unregistered User

LostInSp_ce is offline
 
Join Date: Mar 2017
Posts: 754
Word is (or letter) that it's in the outer reaches of the Solar System and possibly orbiting Voyager 2
Reply With Quote
  #8  
Old 30-04-2017, 09:41 AM
Slawomir's Avatar
Slawomir (Suavi)
Registered User

Slawomir is offline
 
Join Date: Sep 2014
Location: North Queensland
Posts: 3,240
Changed mine just in case.

Thanks Brian
Reply With Quote
  #9  
Old 30-04-2017, 09:43 AM
AndrewJ
Watch me post!

AndrewJ is offline
 
Join Date: Mar 2006
Location: Melbourne
Posts: 1,905
I would hope that most sites had ( at least ) a limit on failed sequential logins.
The brute force cracking can only work if they test against the site????
That said, changing passwords is always a good thing ( as long as you can remember them :-) )
Andrew
Reply With Quote
  #10  
Old 30-04-2017, 10:06 AM
LewisM's Avatar
LewisM
Novichok test rabbit

LewisM is offline
 
Join Date: Aug 2012
Location: Somewhere in the cosmos...
Posts: 10,388
Quote:
Originally Posted by Slawomir View Post
Changed mine just in case.

Thanks Brian
Aw, c'mon Suavi, "CFF105" as a password is too easy to figure out
Reply With Quote
  #11  
Old 30-04-2017, 10:07 AM
LostInSp_ce's Avatar
LostInSp_ce
Unregistered User

LostInSp_ce is offline
 
Join Date: Mar 2017
Posts: 754
And unless your dog's name is supercalifragilisticexpialidocious I wouldn't use it.
Attached Thumbnails
Click for full-size image (password.jpg)
156.8 KB33 views
Reply With Quote
  #12  
Old 30-04-2017, 10:27 AM
Slawomir's Avatar
Slawomir (Suavi)
Registered User

Slawomir is offline
 
Join Date: Sep 2014
Location: North Queensland
Posts: 3,240
Quote:
Originally Posted by LewisM View Post
Aw, c'mon Suavi, "CFF105" as a password is too easy to figure out
I thought nobody will crack my new password!

Will need to change it one day to CFF140 or CFF160, or maybe even TOAxxx?
Attached Thumbnails
Click for full-size image (image.jpg)
127.6 KB19 views
Reply With Quote
  #13  
Old 30-04-2017, 10:59 AM
PCH's Avatar
PCH (Paul)
Registered User

PCH is offline
 
Join Date: Feb 2007
Location: Perth WA
Posts: 2,296
Quote:
Originally Posted by LostInSp_ce View Post
Paul, they might be phishing around the site and may have possibly hacked some or all users passwords. Allowing them to easily hijack an account/s and use it to spam all over the site. If you're thinking that changing your password is pointless it's not. It could have taken them weeks or months to get it and so by changing it sets them back again and they'll most likely lose interest and hopefully move on. It's not a bad thing either to change it regularly which can help minimise the risk and the stronger your password is the longer it will take to be cracked.

You can test one here
https://www.betterbuys.com/estimatin...racking-times/
Ah! Got it - thanks for taking the time to explain.

I follow the logic, although in all the years I've been here I've never heard anyone report that that had happened to them.

Mostly, aren't these spammers just advertising their stuff. And don't they just create an account in the normal way followed by posting their links?

Why have we suddenly started substituting/confusing 'spammer' with 'hacker'?

Just asking (again)
Reply With Quote
  #14  
Old 30-04-2017, 11:18 AM
doppler's Avatar
doppler (Rick)
Registered User

doppler is offline
 
Join Date: Nov 2012
Location: Mackay
Posts: 1,656
The big thing spammers / phishers go for is email addresses and then bomb you with junk emails and they can even send out emails to random people with your email address as the sender so it looks like you are the spammer. If you ignore and delete suspect emails they soon stop.
Reply With Quote
  #15  
Old 30-04-2017, 11:37 AM
LostInSp_ce's Avatar
LostInSp_ce
Unregistered User

LostInSp_ce is offline
 
Join Date: Mar 2017
Posts: 754
Quote:
Originally Posted by PCH View Post
Mostly, aren't these spammers just advertising their stuff. And don't they just create an account in the normal way followed by posting their links?

Why have we suddenly started substituting/confusing 'spammer' with 'hacker'?
This is most likely what's happening but I thought I'd point out what can happen and why it's good practice for not just on here but for the 'www universe' in general.
Reply With Quote
  #16  
Old 30-04-2017, 11:45 AM
PCH's Avatar
PCH (Paul)
Registered User

PCH is offline
 
Join Date: Feb 2007
Location: Perth WA
Posts: 2,296
Quote:
Originally Posted by LostInSp_ce View Post
This is most likely what's happening but I thought I'd point out what can happen and why it's good practice for not just on here but for the 'www universe' in general.
Ok matey, thanks for taking the time to clarify. I do totally get what you're saying in the broader context.
Reply With Quote
  #17  
Old 30-04-2017, 02:03 PM
brian nordstrom (As avatar)
Registered User

brian nordstrom is offline
 
Join Date: Apr 2007
Location: Perth WA
Posts: 4,374
Perhaps , but I have recieved 2 emails from a fellow IIS'r last week , just links and nothing else , I did not open them of course just deleted them and
he has been notified and did not send them so I thought I would put this out there so others can be advised .
Brian.
Quote:
Originally Posted by LostInSp_ce View Post
This is most likely what's happening but I thought I'd point out what can happen and why it's good practice for not just on here but for the 'www universe' in general.
Reply With Quote
  #18  
Old 30-04-2017, 03:45 PM
luka's Avatar
luka
Unregistered User

luka is offline
 
Join Date: Apr 2007
Location: Perth, Australia
Posts: 1,164
Considering that this site is using HTTP only (no encryption) keep in mind that passwords are sent over the Internet in plain text, readable by everybody.
DO NOT REUSE THE PASSWORDS!
Reply With Quote
  #19  
Old 30-04-2017, 03:56 PM
pfitzgerald's Avatar
pfitzgerald (Paul)
Registered User

pfitzgerald is offline
 
Join Date: Jun 2013
Location: Melbourne
Posts: 623
Thanks for the heads up - and have changed it.
Reply With Quote
Reply

Bookmarks

Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +10. The time is now 08:16 AM.

Powered by vBulletin Version 3.8.7 | Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Advertisement
Bintel
Advertisement
Testar
Advertisement