 | | | 
13.01.2019, 13:45
| Forum Veteran | | Join Date: May 2007 Location: Basel
Posts: 585
Groaned at 13 Times in 7 Posts
Thanked 260 Times in 161 Posts
| | Englishforum security breach?
Hi,
Today I received a ransom email to my private gmail account, informing me that they (the sender) knows my password and then went on to show it (it was correct/accurate).
They then gave me two options
Option 1) I ignore their email at which point they will email all of my contacts with a link to some porn I've been watching (curious to know which one it is  )
Option 2) I deposit an amount of US$800 using bitcoin to a particular address.
So why am I sharing this with you?
I use different passwords for every site I access/use and the password they listed/showed is the one I use to access Englishforum.
Thoughts/comments? Anyone else experience this?
== ADMIN EDIT: Full statement on this security alert here: englishforum.ch/security | The following 4 users would like to thank SwissMorgs for this useful post: | | 
13.01.2019, 13:55
|  | Senior Member | | Join Date: Apr 2012 Location: US
Posts: 279
Groaned at 2 Times in 2 Posts
Thanked 218 Times in 119 Posts
| | Re: Englishforum security breach?
Scam !
Had to reply, because I hate this kind of stuff. Don't send any payments.
I doubt Englishforum was breached, but they could have gotten the password in countless ways off your computer or phone.
If you work for a large company, they could have gotten it off your work computer if you login to Englishforums at work.
p.s. how were you able to post this if they have your password ?
p.p.s delete all your contacts, just in case scammer tries to scam any of them.
| This user groans at TheLaughingCow for this post: | | 
13.01.2019, 14:01
|  | Forum Legend | | Join Date: Nov 2007 Location: Zurich area
Posts: 13,015
Groaned at 101 Times in 90 Posts
Thanked 19,957 Times in 8,845 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | p.s. how were you able to post this if they have your password ? | | | | | They have to change it first.
| This user would like to thank aSwissInTheUS for this useful post: | | 
13.01.2019, 14:05
| Banned | | Join Date: Jan 2019 Location: close to the frontier
Posts: 1,018
Groaned at 140 Times in 85 Posts
Thanked 597 Times in 379 Posts
| | Re: Englishforum security breach?
I recently had an email in German telling me to immediately transfer a large sum in bitcoins and if I didn't then all my social media (specifically Facebook) contacts, family, friends and work colleagues would receive a video of me 'doing something to myself' in front of my webcam...
I saw two main flaws with this threat:
1. I have never had a facebook account or any other social media account.
2. I don't have a webcam and have not had one for over 15 years.
In my view these things are just sent out totally at random. I found the email in an account that is barely used and it was not addressed personally to me.
| This user would like to thank Clocker for this useful post: | | 
13.01.2019, 14:00
|  | Forum Legend | | Join Date: Nov 2007 Location: Zurich area
Posts: 13,015
Groaned at 101 Times in 90 Posts
Thanked 19,957 Times in 8,845 Posts
| | Re: Englishforum security breach?
If you use the password only here these possible options:
EF has been indeed hacked. Others might get a similar mail soon.
Not much of concern for me as I use a different password for every site as well. But all those which re-use the password, have the same for Facebook, twitter, or shopping sites should change their passwords ASAP. Never resuse password!
You accessed EF from an non-trusted computer and a key-logger captured your password. Think when that might have happened and what other sites you accessed at that time. Change all the possible affected passwords plus all important ones where a lot of harm could occur (All e-mail accounts, major social networks, important shopping sites).
One of your own devices became compromised. In the worst case even the master password for your password database such as https://pwsafe.org/ plus the database itself has been copied. Find the affected device, wipe it clean, maybe even trash it, reset ALL passwords.
__________________
What?
| The following 4 users would like to thank aSwissInTheUS for this useful post: | | 
13.01.2019, 14:02
|  | Senior Member | | Join Date: Apr 2012 Location: US
Posts: 279
Groaned at 2 Times in 2 Posts
Thanked 218 Times in 119 Posts
| | Re: Englishforum security breach?
Triple p.s.
Please read this article about Sextortion scams demanding Bitcoin , it should help you figure out what you need to do :
Change your password ! https://www.eff.org/deeplinks/2018/0...anding-bitcoin | 
13.01.2019, 15:46
| | Re: Englishforum security breach?
Oh, no, who has been watching porn again
as said, a scam - ignore and report.
| The following 4 users would like to thank for this useful post: | | 
13.01.2019, 17:05
| Banned | | Join Date: Oct 2007 Location: CH
Posts: 10,970
Groaned at 2,032 Times in 1,120 Posts
Thanked 5,139 Times in 3,246 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | If you use the password only here these possible options:
EF has been indeed hacked. Others might get a similar mail soon.
Not much of concern for me as I use a different password for every site as well. But all those which re-use the password, have the same for Facebook, twitter, or shopping sites should change their passwords ASAP. Never resuse password!
You accessed EF from an non-trusted computer and a key-logger captured your password. Think when that might have happened and what other sites you accessed at that time. Change all the possible affected passwords plus all important ones where a lot of harm could occur (All e-mail accounts, major social networks, important shopping sites).
One of your own devices became compromised. In the worst case even the master password for your password database such as https://pwsafe.org/ plus the database itself has been copied. Find the affected device, wipe it clean, maybe even trash it, reset ALL passwords. | | | | | Getting a bit carried away here I think?
| This user groans at omtatsat for this post: | | 
13.01.2019, 17:23
|  | Modulo 2 | | Join Date: Oct 2008 Location: Baselland
Posts: 15,158
Groaned at 309 Times in 265 Posts
Thanked 23,421 Times in 9,526 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Getting a bit carried away here I think? | | | | | The omtatsat EF account was hacked many years ago by a grumpy, argumentative old man. The real omtatsat is a youngish lady who does a lot of work for charidee, but doesn't like to talk about it. | The following 6 users would like to thank NotAllThere for this useful post: | | 
13.01.2019, 17:39
| Banned | | Join Date: Oct 2007 Location: CH
Posts: 10,970
Groaned at 2,032 Times in 1,120 Posts
Thanked 5,139 Times in 3,246 Posts
| | Re: Englishforum security breach?
Been using 1234 for many years. Never a problem | The following 4 users would like to thank omtatsat for this useful post: | | 
13.01.2019, 18:21
| Forum Legend | | Join Date: Aug 2015 Location: Zurich
Posts: 5,684
Groaned at 406 Times in 224 Posts
Thanked 6,504 Times in 2,988 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Been using 1234 for many years. Never a problem | | | | | Well, one could argue that your EF account is not top of the list as those to be hacked | The following 2 users would like to thank ZuriRollt for this useful post: | | 
13.01.2019, 17:42
|  | Forum Veteran | | Join Date: Dec 2016 Location: Zurich
Posts: 1,646
Groaned at 13 Times in 12 Posts
Thanked 1,663 Times in 722 Posts
| | Re: Englishforum security breach?
Have a look at
haveibeenpwned.com
you can search both by email address and by password - and it'll tell you if it was leaked in a large public leak at some point...
| The following 2 users would like to thank Spinal for this useful post: | | 
13.01.2019, 17:47
| Banned | | Join Date: Oct 2007 Location: CH
Posts: 10,970
Groaned at 2,032 Times in 1,120 Posts
Thanked 5,139 Times in 3,246 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | Have a look at
haveibeenpwned.com
you can search both by email address and by password - and it'll tell you if it was leaked in a large public leak at some point... | | | | | Isn't it haveibeenpawned.com
| 
13.01.2019, 17:16
| Forum Veteran | | Join Date: Feb 2012 Location: CH
Posts: 2,300
Groaned at 87 Times in 73 Posts
Thanked 2,002 Times in 1,123 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | I use different passwords for every site I access/use and the password they listed/showed is the one I use to access Englishforum. | | | | | what was the password and how easy to guess it was?
they didn't guess mine | 
13.01.2019, 18:40
| Forum Veteran | | Join Date: Jan 2017 Location: St Gallen
Posts: 534
Groaned at 44 Times in 29 Posts
Thanked 283 Times in 167 Posts
| | Re: Englishforum security breach? | Quote: | |  | | | what was the password and how easy to guess it was?
they didn't guess mine  | | | | | Exactly, @SwissMorgs, can you post your old hacked password? Anyway, if EF was hacked we only risk spam, not a big deal.
| 
15.01.2019, 14:26
| Forum Veteran | | Join Date: Feb 2012 Location: Zürich
Posts: 937
Groaned at 3 Times in 3 Posts
Thanked 538 Times in 327 Posts
| | was englishforum's forum-software hacked?
I sign up to each and every service using a different email-address. This way I know where someone got my email from.
Today I received the following SPAM/SCAM, but undoubtedly they must've gotten my email from englishforum: - I will paste the email below, just changing my personal data and the bitcoin address the spammer/scammer uses, and mark the changes in red.
- The email was actually "from" my email "to" my email.
- The password shows in clear text, so obvisously the Spammer/Scammer is now in possession of that password. It is indeed a password I used a while ago.
I guess others must have received this as well? It's apparently a pretty widespread kind-of phishing attack. | Quote: |  | | | ---------- Forwarded message ---------
From: <my@email.com>
Date: Tue, 15 Jan 2019 at 11:51
Subject: High danger. Your account was attacked.
To: <my@email.com>
Hi!
As you may have noticed, I sent you an email from your account.
This means that I have full access to your acc: On moment of crack (my@email.com) password: (this actually shows a password I once used)
You say: this is my, but old password!
Or: I will change my password at any time!
Of course! You will be right,
but the fact is that when you change the password, my malicious code every time saved a new one!
I've been watching you for a few months now.
But the fact is that you were infected with malware through an adult site that you visited.
If you are not familiar with this, I will explain.
Trojan Virus gives me full access and control over a computer or other device.
This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.
I also have access to all your contacts and all your correspondence from e-mail and messangers.
Why your antivirus did not detect my malware?
Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.
I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
With one click of the mouse, I can send this video to all your emails and contacts on social networks. I can also post access to all your e-mail correspondence and messengers that you use.
If you want to prevent this, transfer the amount of $729 to my bitcoin address (if you do not know how to do this, write to Google: "Buy Bitcoin").
My bitcoin address (BTC Wallet) is: (Bitcoin address)
After receiving the payment, I will delete the video and you will never hear me again.
I give you 48 hours to pay.
I have a notice reading this letter, and the timer will work when you see this letter.
Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
I do not make any mistakes.
If I find that you have shared this message with someone else, the video will be immediately distributed.
Bye! | | | | | | The following 2 users would like to thank ChrisNeedsToKnow for this useful post: | | 
15.01.2019, 14:28
|  | Moderately Dutch | | Join Date: May 2011 Location: Zurich
Posts: 11,804
Groaned at 386 Times in 324 Posts
Thanked 15,431 Times in 7,122 Posts
| | Re: was englishforum's forum-software hacked?
Ongoing issue, ignore and do not pay !
There are some more threads on this already, you are not alone
| 
15.01.2019, 14:34
| | Re: was englishforum's forum-software hacked?
This is why i always make sure I've smartened up my hair, the lighting is good, a little background music maybe and get the angle just right for maximun exposure.
Before I knock one out in front of prawn hub.
| The following 6 users would like to thank for this useful post: | | 
15.01.2019, 14:42
| | Re: was englishforum's forum-software hacked? | Quote: | |  | | | Ongoing issue, ignore and do not pay !
There are some more threads on this already, you are not alone | | | | | Could there be more it ?? Some people are indeed reporting that they only use this password for EF.
That password is being quoted by the scammer.
So yeah, sure, they won't have a video of you in the nip or all of your contacts.. But they have that password and probably the associated email address. Their automated tool will now be trying those on hundreds of other sites, from paypal to banks to mail etc..
If EF has indeed been compromised, then potentially a lot people are actually at risk..
1:Many people don't use different passwords for each service.
2:Many people will have exchanged personal details via private message, these could also be exposed.
I think ADMIN should be making some statement?
| The following 2 users would like to thank for this useful post: | | 
15.01.2019, 14:47
| Forum Veteran | | Join Date: Feb 2012 Location: Zürich
Posts: 937
Groaned at 3 Times in 3 Posts
Thanked 538 Times in 327 Posts
| | Re: was englishforum's forum-software hacked?
Was just posting this as a warning. Didn't find the other thread.
I also think that the password will now be automatically tried on many other websites. Luckily that won't get them anywhere in my case, but still.
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | Thread Tools | | Display Modes | Hybrid Mode |
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts HTML code is Off | | | All times are GMT +2. The time now is 04:46. | |