Attention - Password and Security Update - Page 2 - Home Theater Forum and Systems - HomeTheaterShack.com

 13Likes
Reply
 
Thread Tools
post #11 of 53 Old 06-16-16, 10:50 AM
Senior Shackster
 
Blacklightning's Avatar
 
Join Date: Nov 2011
Location: edmonton AB
Posts: 462
My System
Re: Attention - Password and Security Update

Thanks Selden,

I would just leave it up to the users to reset there own Password. It really is only a problem if you use the same password for other things. I love this forum and will be staying.
I know the internet is a very unsafe place and I do not expect Usernames and Passwords to be 100% safe with any company.

I think people are upset with other things going on with this forum and little things like this may end up being the straw that broken the camel's back.
ellisr63 likes this.
Blacklightning is offline  
Sponsored Links
Advertisement
 
post #12 of 53 Old 06-16-16, 10:50 AM
Elite Shackster
 
JBrax's Avatar
Jeff
 
Join Date: Oct 2011
Location: Kansas City, MO
Posts: 4,363
My System
Quote:
selden wrote: View Post
*Everybody's* account info was compromised.
Sheesh…
JBrax is offline  
post #13 of 53 Old 06-16-16, 10:54 AM
Elite Shackster
 
JBrax's Avatar
Jeff
 
Join Date: Oct 2011
Location: Kansas City, MO
Posts: 4,363
My System
I don't use the same info either but it's still not a good look. Did the same thing happen at AVS?
JBrax is offline  
 
post #14 of 53 Old 06-16-16, 11:06 AM
Senior Shackster
 
Blacklightning's Avatar
 
Join Date: Nov 2011
Location: edmonton AB
Posts: 462
My System
Re: Attention - Password and Security Update

Quote:
JBrax wrote: View Post
I don't use the same info either but it's still not a good look. Did the same thing happen at AVS?
Please read the article it happened to 1,100 websites and forums. So yes.
I'm guessing for 90% of the people here are apart of other forums so this is not a HTS thing.
Blacklightning is offline  
post #15 of 53 Old 06-16-16, 11:12 AM
Senior Shackster
 
Blacklightning's Avatar
 
Join Date: Nov 2011
Location: edmonton AB
Posts: 462
My System
Re: Attention - Password and Security Update

45 million accounts were compromised, that is a lot of accounts so most of the information will not be used.
If I was the hacker I would run a quick program and see if the same IP pulls back the same password for different forums. I would then flag that IP as a target to see if that password will work on Banking sites. I would not waste time on one persons IP/Password.
Blacklightning is offline  
post #16 of 53 Old 06-16-16, 11:14 AM
Elite Shackster
 
JBrax's Avatar
Jeff
 
Join Date: Oct 2011
Location: Kansas City, MO
Posts: 4,363
My System
Quote:
Blacklightning wrote: View Post
45 million accounts were compromised, that is a lot of accounts so most of the information will not be used. If I was the hacker I would run a quick program and see if the same IP pulls back the same password for different forums. I would then flag that IP as a target to see if that password will work on Banking sites. I would not waste time on one persons IP/Password.
I'm sure the hackers know how to hack but maybe not best to throw that out there.
JBrax is offline  
post #17 of 53 Old 06-16-16, 11:27 AM
 
ellisr63's Avatar
Ron
 
Join Date: Feb 2012
Location: In the Home Theater
Posts: 5,768
My System
Re: Attention - Password and Security Update

Quote:
selden wrote: View Post
The reason for the password resets at AVS and here is that VerticalScope was compromised. VerticalScope owns both forums. More than 45 million accounts and passwords were leaked.

See http://www.securityweek.com/45-milli...icalscope-hack
That is fine, but why didn't Vertiscope say this to start with? It doesn't mean though that we should have mandatory password resets every year.

My Home Living room Theater
Samsung 65" FP, Yamaha CX-A5100, Xilica XP4080, (5) JBL 8340As, PS3, XBox One, (1) Asus mini pc, (2) Furman Power Conditioners, Darbee Darcet, Oppo UDP-203, and a Project RPM 1.5 Carbon turntable..
ellisr63 is offline  
post #18 of 53 Old 06-16-16, 11:48 AM
Administrator
 
CricketVS's Avatar
 
Join Date: Dec 2015
Location: Texas
Posts: 213
Re: Attention - Password and Security Update

The article fails to mention that the breach was for a third party plugin. This breach is on countless sites across the internet and not just limited to ours.

Their system was compromised and they grabbed user data for us and thousands of others. We cleared our part of the breach and went this route to further security. This is also in place as many members on the internet use the same or similar passwords across all things they use.

These tech blogs don't ever get the full story, they just have hearsay and run with and embellish it.

We cannot go into detail at the moment as it is being dealt with on a legal level.
CricketVS is offline  
post #19 of 53 Old 06-16-16, 11:51 AM
Administrator
 
CricketVS's Avatar
 
Join Date: Dec 2015
Location: Texas
Posts: 213
Re: Attention - Password and Security Update

Quote:
ellisr63 wrote: View Post
... It doesn't mean though that we should have mandatory password resets every year.
The security of members accounts is very important to us and although a members personal information or private information such as credit card info is not stored on the site, many people use the same password for multiple sites. This could create a potential hole for a hacker to get your info which is what we would like to avoid. The forced password change for now is to insure there are no holes on the forum and the one that should happen a year from now can be revisited then and we can look into if it is still needed on the site.
CricketVS is offline  
post #20 of 53 Old 06-16-16, 10:08 PM
HTS Moderator
Reviewer
 
theJman's Avatar
Jim
 
Join Date: Mar 2012
Location: New Joisey
Posts: 3,237
My System
Re: Attention - Password and Security Update

Quote:
Blacklightning wrote: View Post
I think people are upset with other things going on with this forum and little things like this may end up being the straw that broken the camel's back.
Judging by some of the previous posts it's already taking its toll, which is a real shame given that some of the people leaving for good over this are very active and well respected members.

-Jim

If you take yourself too seriously, expect me to do the exact opposite
theJman is offline  
Reply

Bookmarks

Tags
attention , password , security , update

Quick Reply
Message:
Options

Register Now




PLEASE COMPLETE ALL REQUIRED FIELDS BELOW... THANKS!

REQUIRED FIELDS ON THIS PAGE
YOU MUST COMPLETE ALL OF THESE

Username
Password
Confirm Password
Email Address
Confirm Email Address
Random Question
Random Question #2




User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
PLEASE READ BELOW PRIOR TO ENTERING AN EMAIL ADDRESS!

ATTENTION!

YOU MUST ACTIVATE YOUR ACCOUNT!

Activation requires you reply to an email we will send you after you register... if you do not reply to this email, you will not be able to view certain areas of the forum or certain images... nor will you be able download software.

AN INVALID EMAIL ADDRESS WILL CAUSE YOUR ACCOUNT TO BE DELETED!

See our banned email list here: Banned Email List

We DO NOT respond to spamcop, boxtrapper and spamblocker emails... please add @hometheatershack DOT com to your whitelist prior to registering or you will get nowhere on your registration.


Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page



Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML is not allowed!
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

 


For the best viewing experience please update your browser to Google Chrome