Addressing the recent user account hack scare

Discussion in 'GBAtemp & Scene News' started by Costello, Jan 12, 2017.

Thread Status:
Not open for further replies.
Jan 12, 2017
  1. WiiUBricker

    Member WiiUBricker Fake News™ Reporter

    Joined:
    Sep 19, 2009
    Messages:
    6,748
    Location:
    Espresso
    Country:
    Argentina
    You sign in via Facebook. If your Facebook is not compromised, I wouldn't worry.
     


  2. HyperT

    Member HyperT GBAtemp Advanced Fan

    Joined:
    Jun 4, 2016
    Messages:
    674
    Country:
    United Kingdom
    Scroll down before page fully loads
     
  3. mrissaoussama

    Member mrissaoussama Hiuhbi32

    Joined:
    Nov 23, 2015
    Messages:
    194
    Country:
    Tunisia
    You mean they would have access to my Facebook?
     
  4. WiiUBricker

    Member WiiUBricker Fake News™ Reporter

    Joined:
    Sep 19, 2009
    Messages:
    6,748
    Location:
    Espresso
    Country:
    Argentina
    No. What I mean is if they hack your facebook (know your facebook login details) they can login to your GBAtemp account.
     
  5. Aletron9000

    Member Aletron9000 3DS Master

    Joined:
    May 10, 2016
    Messages:
    1,447
    Location:
    3DS ARM9 CPU
    Country:
    United States
    I changed my GBATemp password. So, I should probably change all of my accounts with the same password right?

    Ugh, I hate those type of hackers.
     
  6. HyperT

    Member HyperT GBAtemp Advanced Fan

    Joined:
    Jun 4, 2016
    Messages:
    674
    Country:
    United Kingdom
    You should anyway. Don't believe they got anything from GBA unless they got into an admin account...
     
    Aletron9000 likes this.
  7. WiiUBricker

    Member WiiUBricker Fake News™ Reporter

    Joined:
    Sep 19, 2009
    Messages:
    6,748
    Location:
    Espresso
    Country:
    Argentina
    @RedBlueGreen Edit: Another possibility would be to create a QR code of your Master and Grandmaster passwords and tattoo it to a well hidden place.
     
  8. seijinshu

    Member seijinshu ...

    Joined:
    Jan 6, 2016
    Messages:
    483
    Location:
    ...
    Country:
    United States
    This is why passwords are not meant to be good on those ROM sites, let alone anything like your good passwords.
    My good stuff is like ofjdhisocnrq193(626195)*:&2(_96$: (on phone, too lazy to mix those up)
    And those ROM sites passwords are like
    b0i$
    Note: example passwords. My passwords are much better.
     
  9. Maximilious

    Member Maximilious GBAtemp Addict

    Joined:
    Nov 21, 2014
    Messages:
    2,058
    Country:
    United States
    I didn't even know 2FA was an option here - Thanks!
     
  10. wprpalmeida

    Newcomer wprpalmeida Advanced Member

    Joined:
    Apr 20, 2007
    Messages:
    66
    Location:
    Brazil...F*** YEAH
    Country:
    Brazil
    what site was it? was it that paradise?
     
  11. Tomy Sakazaki

    Member Tomy Sakazaki GBAtemp Advanced Fan

    Joined:
    Oct 23, 2006
    Messages:
    682
    Country:
    Brazil
    That iso network.
     
  12. wprpalmeida

    Newcomer wprpalmeida Advanced Member

    Joined:
    Apr 20, 2007
    Messages:
    66
    Location:
    Brazil...F*** YEAH
    Country:
    Brazil
    phew, my acct there is completely different
     
  13. AgentAntz

    Newcomer AgentAntz Member

    Joined:
    Nov 25, 2016
    Messages:
    10
    Country:
    United States
    Can someone please take that stupid video off of AuroraWrights original post. Its a slap in the face to her hard work.
     
  14. kuwanger

    Member kuwanger GBAtemp Regular

    Joined:
    Jul 26, 2006
    Messages:
    178
    Country:
    2FA sounds nice but is too much of a PITA to use on most sites, especially if you often browse in incognito mode and/or actively log out of web sites ASAP (to reduce the chance of cookie/session key replay attacks). Perhaps I'd feel differently if it weren't the case that I use randomly generated passwords and hence I should only really be vulnerable if (1) my system is compromised (for which 2FA may be of little help), (2) some part of the chain of identification could be MITM (*cough*where's the SSL?*cough*), or (3) the website itself is either compromised or allows for brute force attacking accounts. For (1), I'm as much to blame as if I were using a weak password or reusing passwords. But for (2) and (3), well that's a poor excuse for me, the user, to go out of my way to try to mitigate what should be being done properly on the website end.

    PS - By no means is this meant to be chastising anyone (Aurora Wright or GBATemp.net's admins). I just think that 2FA is often overkill and really misses the point: whatever system you use, you have to figure out what the real weakness is/should be. If the issue fundamentally is a weak password, deal with that. If it's that it's too easy for others to snoop the password, deal with that. If the server is so readily compromised, deal with that. If all of that's been well addressed and 2FA still makes sense, do that. Otherwise, well, they'll just compromise the weakest part (hack your email account, reset passwords, and then 2FA can become a joke) which actually makes the situation worse. :/
     
  15. About7fish

    Newcomer About7fish Member

    Joined:
    Aug 18, 2012
    Messages:
    24
    Country:
    United States
    Now where would've they gotten a list of unencrypted usernames and passwords? :^)

    In all seriousness, the password I've been using was burned long ago so this change is overdue anyway.
     
  16. Crystal the Glaceon

    Member Crystal the Glaceon GBATemp's Official Waifu™ Furry trash

    Joined:
    Sep 13, 2009
    Messages:
    17,294
    Location:
    Between insane and insecure
    Country:
    Antarctica
    Costello's account is fine.
    GBATemp itself wasn't compromised, but some ISO site was.
    I honestly suggest people stop using that iso site. They appear to have some pretty shitty security going on over there. If you do it, use a throwaway account/password.
     
    Chary likes this.
  17. streetbrawler123

    Member streetbrawler123 GBAtemp Regular

    Joined:
    Mar 9, 2013
    Messages:
    177
    Country:
    Netherlands
    Thank u Changed my password =D
     
  18. MarioMasta64

    Member MarioMasta64 welcome~

    Joined:
    Dec 21, 2016
    Messages:
    1,365
    Country:
    United States
    omg thats exactly what i do lol
     
  19. Coto

    Member Coto GBAtemp Addict

    Joined:
    Jun 4, 2010
    Messages:
    2,316
    Country:
    Chile
    @Costello OK, time to password change then
     
  20. BIFFTAZ

    Member BIFFTAZ GBAtemp Advanced Fan

    Joined:
    Jul 26, 2010
    Messages:
    552
    Country:
    United Kingdom
    For sites like that ISO site and a like, I use 10 minute mail & a different user name & a random pass at the time of signing up.
     
    RedBlueGreen likes this.
Thread Status:
Not open for further replies.

Share This Page