ROM Hack PSA: "That ISO site" was hacked, exposing emails, usernames, IP addresses, and salted passwords!

Rhapsody

Well-Known Member
OP
Member
Joined
Jan 4, 2016
Messages
252
Trophies
0
Age
28
Location
United States
Website
www.google.com
XP
1,023
Country
United States
Information has recently come to light that "that ISO site" has been hacked (both the Wii U and 3DS variants), leaking emails, usernames, IP addresses, and salted MD5 passwords. This breach occurred in September of 2015. While this is a big deal, you're probably wondering, why post this here?

I realize that, even though we don't like to admit it, a lot of people download CIAs and ISOs from that site. From that, you can make a logical connection that most people are probably going to share their username and password with their GBATemp account and their "that ISO site" account, and sometimes even their email account. With that being said, this is a warning; if you use the password you use on "that ISO site" ANYWHERE else, you need to change the password immediately, or risk your account being compromised. I personally think that getting hacked because of a piracy site leaking details is a terrible way to go, but that's up to you if it happens.

"But Rhapsody," you ask, "you said the passwords are encrypted with MD5 and salted. There's nothing to worry about, right"? In a way, yes; CrackStation puts it best;

CrackStation said:
A password hashed using MD5 and salt is, for all practical purposes, just as secure as if it were hashed with SHA256 and salt. Nevertheless, it is a good idea to use a more secure hash function like SHA256, SHA512, RipeMD, or WHIRLPOOL if possible.

In other words, while your passwords aren't technically out there in plain text, it's still a good idea to change them. On the off-chance "that ISO site" was salting improperly, your password is easily crackable. To be safe, you should take the following steps;
  1. Use a password manager like KeePass or LastPass so you can use unique passwords on each site.
  2. Change your password on any site where you shared a password with "that ISO site", especially your email and GBATemp account if they do.
  3. Ensure that your account hasn't been hacked. If it has, assess the damage, and, if possible, start cleaning it up.
  4. Subscribe to https://haveibeenpwned.com/ on any email addresses you use to be aware of new major breaches.
I know that this is a lot more effort than normal internet users will want to put forward, but for the sake of keeping your accounts secure, you should really change your passwords now and make sure they're all unique, so something like this won't worry you. It's a lot easier when it's all set up.
 
Last edited by Rhapsody,

Scarlet

Editorial Aspirant
Editorial Team
GBAtemp Patron
Joined
Jan 7, 2015
Messages
5,667
Trophies
3
Location
Middleish South-Left
Website
scarlet.works
XP
18,916
Country
United Kingdom
;___________;

dkRglHF.png


Of all the bad times to have joined eh? Ah well, pretty sure the password I have there is unique anyway. Gonna start using alias addresses in future and just delete them once I've made an account.
 
  • Like
Reactions: RemixDeluxe

Rhapsody

Well-Known Member
OP
Member
Joined
Jan 4, 2016
Messages
252
Trophies
0
Age
28
Location
United States
Website
www.google.com
XP
1,023
Country
United States
I don't remind when I subscribed there but I hink I have som work to do when I get home ... I think the pass are different but I don't remember XD


how this works?

Haveibeenpwned is a site that looks through information leaked in large website breaches, and tells people who search their email address what leaks they were involved in. It doesn't provide any of this information to anyone else.
 
  • Like
Reactions: Sliter
D

Deleted-379826

Guest
I don't remind when I subscribed there but I hink I have som work to do when I get home ... I think the pass are different but I don't remember XD


how this works?
They will send you emails about all breaches they know about
 
  • Like
Reactions: Sliter

Dimensional

Well-Known Member
Member
Joined
Dec 7, 2008
Messages
1,011
Trophies
2
Age
35
Location
Texas
XP
3,016
Country
United States
It's a good thing I've never been on there. Kind of hard to have an account to be breached if you don't go there. Then again... I have no clue what the site's name is, so.... *shrugs* Not that I'm going to ask around.
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • HUNTERFOX @ HUNTERFOX:
    Anyways cya
    +1
  • Xdqwerty @ Xdqwerty:
    @HUNTERFOX, I would use my piano keyboard more often if I could plug it into my PC or something.
    +1
  • K3Nv3 @ K3Nv3:
    Would my psychiatrists think I'm crazy if I walk in with ketchup and meth in my pockets
  • Sicklyboy @ Sicklyboy:
    Probably will think you're a ketchup user
  • K3Nv3 @ K3Nv3:
    Snortup
  • Xdqwerty @ Xdqwerty:
    Anyone here?
  • K3Nv3 @ K3Nv3:
    No one that you like is here check back later
    +1
  • Xdqwerty @ Xdqwerty:
    Boobs
  • kijetesantakalu042 @ kijetesantakalu042:
    I like you quail
    +1
  • Xdqwerty @ Xdqwerty:
    Good night
  • Sicklyboy @ Sicklyboy:
    made enchiladas tonight. came out decent. Not the best I've made, and half of the tortillas split open because I didn't warm them first smh, and I used jarred sauce rather than making my own. Still tasty though
  • K3Nv3 @ K3Nv3:
    Was this employed jarred or unemployed jarred
  • K3Nv3 @ K3Nv3:
    Coax still surprisingly goes for a decent amount $10 per 10feet
  • kijetesantakalu042 @ kijetesantakalu042:
    phonaesthetics
  • BigOnYa @ BigOnYa:
    Coax wire today is much better (RG6) than old school coax (RG58/59). Newer wire more expensive than the older wire.
  • BigOnYa @ BigOnYa:
    You can buy it at any length @homedepot wire cutting area cheaper than buying preformed cable, but you have to put on your own ends/ connectors.
  • K3Nv3 @ K3Nv3:
    I still like DTV but the wire wasn't long enough to reach the window still pick up 40 channels
    +1
  • BigOnYa @ BigOnYa:
    Yea me too, esp for local news, sports, or channel surfing. I get like 60 channels but there's like 15 shopping networks, and bunch other bs, religion, Hispanic, etc. I went thru and blocked most those on tv channel settings.
  • BigOnYa @ BigOnYa:
    There is 1 Hispanic channel I kept, sometimes they have soap operas on it, w scandalous clothed hotties, I just beat mute it.
  • K3Nv3 @ K3Nv3:
    Ah yes the Juan channel order 15 pairs of feet
  • K3Nv3 @ K3Nv3:
    I got this antenna but the damn thing has usb power right next to the coax plug and you can't actually extend it without usb extension the Pic makes the cable look longer than it actually is https://a.co/d/501IQf2
  • BigOnYa @ BigOnYa:
    Use a old phone/ USB charger block thing, plug into wall instead of tv usb. Use cheap extension cord if need.
    BigOnYa @ BigOnYa: