MacRumors Forums: Security Leak

[furi0usbee]

Wait, what?

Please read our notice about a possible security leak on MacRumors Forums.

So MR changed the text to possible security leak. Umn, no, it was a most definite security leak.

Thanks MR for pulling me back into this thread.

 

[Shrink]

You are the poster child for hackers. All passwords should be changed periodically, intrusion or not. I can see how the 5 seconds it takes to change your password can hinder your bottom line.

BTW: the post you quoted was written by someone with ONE post.

Yes...this is his/her FIRST post...so I guess s/he hasn't needed to periodically change his/her password on this site yet!

You suggestion is, of course, an excellent suggestion for all of us.

 

[cymolia]

has the security breach been rectified ? how do we know this wont ever happen again ?

 

[Renzatic]

You are the poster child for hackers. All passwords should be changed periodically, intrusion or not. I can see how the 5 seconds it takes to change your password can hinder your bottom line.

Yup. Security is a proactive thing, and requires due diligence from all parties involved. I expect the admins to do their part to make sure my information is encrypted and difficult to obtain in the event of a worst case scenario, while I do my part to make sure my password isn't something easy to crack or guess at, isn't used on 50 thousand other sites I use, and gets rotated often enough (which I'll admit, that last one I don't do nearly as much as I should).

Also, there's the acceptance that even with everyone on the ball, there's always the chance that something like this will happen. Some little thing will get overlooked at some point, and someone will find a way to exploit it. I mean hell, it isn't like Macrumors is the only site I visit that got hacked and had its passwords leaked. For me, it's about the 4th of 5th time I've had to scramble and start changing things around to make sure I've got all my bases covered.

It sucks every single time, but it's also a fact of life on the internet. Sooner or later, your favorite sites will get hacked. All you can do is accept it, and gird yourself for when it does.

 

[Shrink]

has the security breach been rectified ? how do we know this wont ever happen again ?

You don't.

There is no such thing as perfect security.

If you need 100% guarantee of !00% security, I suggest that you stay off the 'net completely, and never send an email.

 

[flat five]

how do we know this wont ever happen again ?

we don't. take measures to protect yourself.

 

[Slinkwyde]

has the security breach been rectified ? how do we know this wont ever happen again ?

We don't.

 

[S.B.G]

has the security breach been rectified ? how do we know this wont ever happen again ?

Just as the others have said, there is no 100% security with anything. There is a risk factor involved with being online and one needs to weigh their risk to benefit factors when they sign up to a website and determine if it's worth it or not.

 

[Peace]

Just as the others have said, there is no 100% security with anything. There is a risk factor involved with being online and one needs to weigh their risk to benefit factors when they sign up to a website and determine if it's worth it or not.

Some Websites have better security than others.

Just saying'

 

[S.B.G]

Some Websites have better security than others.

Just saying'

Yeah but are they 100% hack proof?

Just saying'

 

[maflynn]

Some Websites have better security than others.

Just saying'

Many of the websites that have higher security also more sensitive data as well. While not minimizing the issue here, I think its a whole different ball of wax if my bank's website was hacked then an internet forum.

 

[samcraig]

Many of the websites that have higher security also more sensitive data as well. While not minimizing the issue here, I think its a whole different ball of wax if my bank's website was hacked then an internet forum.

I might argue that some people treat their posts and time here as more valuable than money

 

[KdParker]

did this just happen again? Seemed like forums were down and then I got redirected.

 

[Shrink]

I might argue that some people treat their posts and time here as more valuable than money

You're right!

OY VEY!

 

[Peace]

Yeah but are they 100% hack proof?

Just saying'

Many of the websites that have higher security also more sensitive data as well. While not minimizing the issue here, I think its a whole different ball of wax if my bank's website was hacked then an internet forum.

You guys are right. Nothing is hack proof. Something netizens should get used to.

Just ain't the old days..Tisk Tisk..

 

[d4rkc4sm]

You guys are right. Nothing is hack proof. Something netizens should get used to.

Just ain't the old days..Tisk Tisk..

Peace, im glad you made peace with it. Lets all move on. Peace out.

 

[LostSoul80]

I've just heard MR got hacked -- OMG!!!! Is that true?? Please, I need at least another 20 pages of discussion of this thread.

We could even create a separate section, dedicated to the MR forums security leak, where users can post their worries, hopes, gossip on the hacker, general chatter about hashes and stuff.

 

[ManhattanBeach]

I've just heard MR got hacked -- OMG!!!! Is that true?? Please, I need at least another 20 pages of discussion of this thread.

We could even create a separate section, dedicated to the MR forums security leak, where users can post their worries, hopes, gossip on the hacker, general chatter about hashes and stuff.

genius

 

[Joe MCMXLVII]

Two minutes before you sent your warning message to me, someone took $788,419.75 from my bank account. Can I have a refund please?

 

[Shrink]

Two minutes before you sent your warning message to me, someone took $788,419.75 from my bank account. Can I have a refund please?

My bad!

I'll get it right back to you.

Just a typo...

 

[panurge]

Just changed my password... but what's the use if everything is sent with regular HTTP anyway?

 

[Zmanbaseball2]

Macrumors seems to be going down more than usually lately.
I was taken to this website after waiting for MR to load the front page of the forums.
http://cloudproxy1.sucuri.net/timeout.html
Then a few minutes later it was up again.

 

[ratsg]

Macrumors seems to be going down more than usually lately.
I was taken to this website after waiting for MR to load the front page of the forums.
http://cloudproxy1.sucuri.net/timeout.html
Then a few minutes later it was up again.

I don't know for sure, but more than anything, the page you provided appears to be that your ISP is forcing your http traffic through a transparent proxy, and said proxy had an intermittent issue.

 

[Zmanbaseball2]

I don't know for sure, but more than anything, the page you provided appears to be that your ISP is forcing your http traffic through a transparent proxy, and said proxy had an intermittent issue.

I have never seen it before...

 

[arn]

Macrumors seems to be going down more than usually lately.
I was taken to this website after waiting for MR to load the front page of the forums.
http://cloudproxy1.sucuri.net/timeout.html
Then a few minutes later it was up again.

I don't know for sure, but more than anything, the page you provided appears to be that your ISP is forcing your http traffic through a transparent proxy, and said proxy had an intermittent issue.

No, we chose to use Sucuri. It's to block bad/malicious requests.

We're still rebuilding and dealing with a lot of stuff... so please excuse our mess.

arn