Need Advice About A Hacked Website

Cyclone

Cyclone

Cyclone

Soldato
Joined
23 Sep 2007
Posts
4,116
Location
Essex
I signed up to a website last month, and using my debit card to access extra bits. (It's an NZB site so nothing pervy :))

But I had an email from the hacked site saying they got 'user/pass, email addy and last connected ip address' from the database they copied.

I will ring my bank and get my debit card sorted, but can the hackers gain anything from the IP number I connected with?? I mostly use the same user/pass on the majority of the websites I go on.

The above site is down at the mo for maintenance, so I cant ask on there.

Thanks in advance !!
 
Cyclone said:
I mostly use the same user/pass on the majority of the websites I go on.
Click to expand...

You really need to change the password on every other website if you use the same user/pass on each one - especially now that one is confirmed to be compromised. Use a password manager like Keepass or Lastpass to generate a different long/random password for each one.
 
Selekt0r said:
You really need to change the password on every other website if you use the same user/pass on each one - especially now that one is confirmed to be compromised. Use a password manager like Keepass or Lastpass to generate a different long/random password for each one.
Click to expand...

Thanks for reply

So they can see what website i've been on from my IP?? I looked on my 'saved logins' and there's loads with the same info :(

I'll look at the password manager you mentioned
 
Change alllllll your password and use a keeper and 2 step auth for the important stuff
 
Cyclone said:
Thanks for reply

So they can see what website i've been on from my IP?? I looked on my 'saved logins' and there's loads with the same info :(

I'll look at the password manager you mentioned
Click to expand...

No they probably can't, but they don't need to. There are programs/bots which will just try your set of re-used credentials across thousands of common websites and probably find a few that you have used them on.
 
Don't use the same password for your lastpass account :p

I had to do the same a few years ago, its annoying but I found loads of old active accounts for sites I had completely forgotten about (went through old emails) so it was a good opportunity to make those more secure or delete them if possible.
 
If your email account password is the same, that should be the first one to change. Access to your email allows someone to use a program/bot to run the forgotten password feature on sites where the compromised password fails.
 
I noticed a copy of the message on another forum.

It seems they installed a keylogger on the website as well. I wonder how they managed that?
 
BowdonUK said:
I noticed a copy of the message on another forum.

It seems they installed a keylogger on the website as well. I wonder how they managed that?
Click to expand...
sounds like a terrible website
Cyclone said:
So they can see what website i've been on from my IP??
Click to expand...
NO and your IP probably changed since then anyway.

They could see where you live down to about 0.5miles though if it's still your IP using one of those ip geolocator websites

if your rich in a mansion with no others houses around you might get a visit soon :D
 
I've cancelled my debit card and ordered a new one.

In my Login section within Waterfox settings - I've changed all the passwords with the sites I frequent the most. There are a couple I'm not too bothered about as I havent used them in years.

And I've changed my email password.

I did install keePass. Seems easy in a complicated way lol

First time something like this has happened to me. When it was mentioned they got a copy of the IP number I used I automatically thought they could see every site I've been on. Ive gone super paranoid :eek::(

Thanks again guys for the help/advice. Much appreciated :)
 
Last edited:
Cyclone said:
But I had an email from the hacked site saying they got 'user/pass, email addy and last connected ip address' from the database they copied.
Click to expand...

Hi, by this are you saying that the bona fide site, which was hacked, sent you an email or the hackers sent you an email? Must be worrying wondering if the email was spurious too.
 
Cyclone said:
There are a couple I'm not too bothered about as I havent used them in years.
Click to expand...
You should change them as well, especially if there's any chance whatsoever that you're using passwords for them that you use elsewhere. It doesn't matter that you don't use them, they are a potential risk.
 
Belly said:
Hi, by this are you saying that the bona fide site, which was hacked, sent you an email or the hackers sent you an email? Must be worrying wondering if the email was spurious too.
Click to expand...

From the bona fide site :)

Feek said:
You should change them as well, especially if there's any chance whatsoever that you're using passwords for them that you use elsewhere. It doesn't matter that you don't use them, they are a potential risk.
Click to expand...

Thanks, I'll go through them and change them as well.

Bouton Aide said:
It’s getting to that stage now that people need to use 2fa/mfa with a password manager. Using one password on all sites is asking to be done over at some point.
Click to expand...

Have to agree on this, after being kicked in the nuts (so to speak).

Thanks again guys.
 
There also could be extra issues depending on how the website does the transactions. The website could be storing the card details in plain text, for example. So just check through all your recent transactions (you already said you were getting a new card)
 
Last edited:
Looks like they only found out about the breach when one of their disk failed last week.

I wonder how long their server were compromised with the key logger before they found out if not for the failed drive.
 
You must log in or register to reply here.
Back
Top Bottom