Im still lookin around for the video of christina aguliera
Spammed in my PM
- Thread starter Balabushka
- Start date
I also received it earlier today, has since disappeared from my message list.
I'm so sorry about this everyone, I had no idea it would spiral so out of control like this. Just kidding, I got one earlier today but now that I looked again cause I was itching to infect my Dell with a cool new virus, it's gone 
What a nasty creepy crawler bot though. It's gotten red rep dragons flying at top speed.
What a nasty creepy crawler bot though. It's gotten red rep dragons flying at top speed.
LOL click the nudie link and you send a spam grenade. Guess we know some pool players checked it out. 
JoeyA said:
I was able to beat the virus 5-0. thanks to my Cuetec cues by Earl and Allison. :thumbup:
JoeyA said:
Just met with Trotter in the shadow world. He said DEVO sent my porn bot spam 12/31/1969 to which I quickly replied that the Teenage Mutant Ninja Turtles is actually based on a true story: Chuck Norris once swallowed a turtle whole, and when he crapped it out, the turtle was six feet tall and had learned karate
Thanks and a word of warning
Thanks for all your hard work in the background.
Do you think someone obtained their logon passwords, rather than using a security vunerability in the site itself? If so presumably they had weak passwords and were hacked through a brute-force dictionary attack. In this case I would suggest you notify the affected accounts and advise them to change their passwords. Perhaps enforcing a stronger password policy would be useful too.
More importantly if anyone whose account was hacked uses the same user name and password on other sites as they use on this one, especially email accounts, online shopping site or banking etc. they need to change those account passwords NOW.
AzHousePro said:
Thanks for all your hard work in the background.
Do you think someone obtained their logon passwords, rather than using a security vunerability in the site itself? If so presumably they had weak passwords and were hacked through a brute-force dictionary attack. In this case I would suggest you notify the affected accounts and advise them to change their passwords. Perhaps enforcing a stronger password policy would be useful too.
More importantly if anyone whose account was hacked uses the same user name and password on other sites as they use on this one, especially email accounts, online shopping site or banking etc. they need to change those account passwords NOW.
OK, I am back home now. Was out at the Az State BCA Championships when this all hit the fan today. (By the way, congrats to Jerry "*" Stuckart for his win)
It appears as if someone went through a list of users looking for users whose passwords were the same as their user names and used any account they could get into to send these spam PMs.
I have disabled those accounts that were compromised and will wait to hear from the users who now can't log in to their accounts (already hearing from some of them).
Moral of the story? Don't use your username as your password.
Mike
It appears as if someone went through a list of users looking for users whose passwords were the same as their user names and used any account they could get into to send these spam PMs.
I have disabled those accounts that were compromised and will wait to hear from the users who now can't log in to their accounts (already hearing from some of them).
Moral of the story? Don't use your username as your password.
Mike
Spam all calmed down? I have not received any more since my first one.
AzHousePro said:
Utterly brilliant.
FYI, I got one of those notes as well, dated 12/31/1969 (is that not a big enough "don't click" giveaway for some folks?) - but with no subject line, and oddly enough, no member name. I'm assuming that the account that was used to send this PM to me has been deleted, and hence there's no longer an account to list as the sender.
This was an automated attack. If someone was simply poking around on accounts, finding those that they could log into (same username/pw) and manually sending these spam PMs to other users, the way the rest of us send PMs, then the date would be correct. 12/31/1969 is a fairly normal "default" date when no date value is specified.
My user name and PW are not the same but I did get a PM and a funny email sent to "Joe" that was not read. Hopefully they are now gone.
One potential problem here is that I have the same user name and PW on some other forums so now I wonder if the bot collected my standard user name and PW. Any thoughts on the matter would be helpful.
A dummy email I can live with but screwing around with my accounts on other forums might be a problem. Hopefully the bot did not get my pw
One potential problem here is that I have the same user name and PW on some other forums so now I wonder if the bot collected my standard user name and PW. Any thoughts on the matter would be helpful.
A dummy email I can live with but screwing around with my accounts on other forums might be a problem. Hopefully the bot did not get my pw
No, if your username and password were not the same then your account was not compromised.
All the hackers were able to do was log in as another user and send a pm. They couldn't hack your password by being logged in as someone else.
Mike
All the hackers were able to do was log in as another user and send a pm. They couldn't hack your password by being logged in as someone else.
Mike
i don't check my pm's anywhere near regularily, but i did not expect to get one on my 4th b-day from azb. it was sent 1969.
i appologize for a slight delay dear admins, but thank you so much for thinking of me as i wobbled around mumbling things unheard of in cake drewl.
bows,
i appologize for a slight delay dear admins, but thank you so much for thinking of me as i wobbled around mumbling things unheard of in cake drewl.
bows,