Results 1 to 15 of 15
  1. #1
    Join Date
    Sep 2006
    Posts
    3,769

    New phishing scam

    New to me anyway. Receive an email with one of my fairly complex passwords in the subject line. But it was one digit off.
    Same blah blah send me bitcoin or I’ll ruin your life. Not concerned about that part. But if they brute forced the password, why wouldn’t they have all of it? How would you get 12 of 13 characters only? Email said they used a keystroke logger, but that doesn’t make sense either.

  2. #2
    Join Date
    Dec 2007
    Location
    base of the Bush
    Posts
    10,752
    They do have it all, just worried another scammer will hack them and have your correct password.
    www.apriliaforum.com

    "If the road You followed brought you to this,of what use was the road"?

    "I have no idea what I am talking about but would be happy to share my biased opinions as fact on the matter. "
    Ottime

  3. #3
    Join Date
    Dec 2004
    Location
    Simi Valley, CA
    Posts
    5,142
    Doubt they hacked you, they probably hacked a site where you use that password and got a huge data dump. Now they're milking it. Change your password everywhere you use the hacked one and you should be good to go.

    I received the same scam (a bunch of times) and it was an old password I don't use anymore, so they must have hacked a site that I haven't used for a long time.

  4. #4
    Join Date
    Sep 2006
    Posts
    3,769
    Yup changing everything which is a chore but I’ll do it anyway. The site that it applied to was LinkedIn

  5. #5
    Join Date
    Dec 2004
    Location
    Simi Valley, CA
    Posts
    5,142
    ^ Whoa, have they warned users that there were hacked?

    Or maybe you received a phishing email that appeared to be from LinkedIn and you clicked through, and the hackers grabbed your password and then redirected you to the real site and logged you in, so you never noticed.

  6. #6
    Join Date
    Sep 2006
    Posts
    3,769
    But then it seems the password would match and not be a digit off?
    Again I’m not going to lose any sleep, just curious about the logistics of it.

  7. #7
    Join Date
    Dec 2014
    Location
    Colorado Front Range
    Posts
    2,875
    Same thing landed in my spam folder on Sunday morning.

    Since I'm old school and keep an offline password list (on multiple flash drives), I checked and found the only place I used that password was on an Australian guitar pickup manufacturer's site.

    So, my conclusion was that they hacked that site and were trying to get more mileage out of it.

    Inconvenient as it was (and no doubt unnecessary), I changed all of my critical passwords, so in this sense, they did me a service as I've been putting this off for far too long.

    ... Thom
    Last edited by galibier_numero_un; 07-23-2019 at 01:11 AM.
    Galibier Design
    crafting technology in service of music

  8. #8
    Join Date
    Dec 2011
    Posts
    4,871
    Quote Originally Posted by Rideski View Post
    New to me anyway. Receive an email with one of my fairly complex passwords in the subject line. But it was one digit off.

    Was it "Passwood"?
    Quote Originally Posted by XXX-er View Post
    the situation strikes me as WAY too much drama at this point

  9. #9
    Join Date
    Jan 2009
    Location
    907
    Posts
    10,072
    Quote Originally Posted by galibier_numero_un View Post
    I checked and found the only place I used that password was on an Australian guitar pickup manufacturer's site.
    Cuntbuckas? Whoop Whoops? Dingos?

  10. #10
    Join Date
    Sep 2006
    Posts
    3,769
    Quote Originally Posted by reckless toboggan View Post
    Was it "Passwood"?
    qW3rty1!1!1!1!1!

    They got one of the exclamations in the wrong spot.

  11. #11
    Join Date
    Mar 2010
    Location
    Tahoe
    Posts
    297
    The good password managers track breaches, and will encourage or force you to update. Use a password manager.

  12. #12
    Join Date
    Jan 2008
    Location
    truckee
    Posts
    10,743
    Quote Originally Posted by Rideski View Post
    Yup changing everything which is a chore but I’ll do it anyway. The site that it applied to was LinkedIn
    Linkedin was hacked in 2012. 170 million passwords.

  13. #13
    Join Date
    Oct 2005
    Location
    Sandy
    Posts
    4,815
    How did they know my password was 'Password1' ?
    When life gives you haters, make haterade.

  14. #14
    Join Date
    Dec 2014
    Location
    Colorado Front Range
    Posts
    2,875
    Interesting article on how Europop is handling ransomware.

    They Stole Your Files, You Donít Have to Pay the Ransom https://nyti.ms/2H3Wxgo

    ... Thom
    Galibier Design
    crafting technology in service of music

  15. #15
    Join Date
    Nov 2011
    Posts
    1,413
    Quote Originally Posted by Rideski View Post
    qW3rty1!1!1!1!1!

    They got one of the exclamations in the wrong spot.
    Rad password, mind if I use it?

    Sent from my Pixel 3a using Tapatalk

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •