**** Please enable 2FA on your OcUK forum account ****

[Semple]

There are loads of such examples on YouTube, for example. They get into one account (say, OcUK). From there, they find your mobile number and call your provider and blag your email address and/or home address. Then they link those to find your social networks, then (maybe using dumped data or known exploits or social engineering) get into those and your email accounts... and it's all downhill from there.

Here's one quick demo. Once you have a mobile number, and an email address, or a single account login that has some personal info (such as an email address in the profile/settings) it's game over. It's possible to basically ruin your life and get access to almost anything. Enable. MFA. Everywhere.

I would hope that most of the frequent posters on this forum wouldn't fall for most of those tricks. You'd have to be really lacking in any security practices to fall for all of those.

Either way it's very interesting / eye opening. I'm pretty confident everything i use online is heavily locked down, so would be interested to see how far someone would get trying to get access to my data.

 

[ThundyCat]

Jeez, my 30 days just kicked in. I had to grab my phone and input a 6 digit code that took me like 10 seconds to do. It's such and inconvenience that I have to do this again in 30 days.

 

[Deleted member 77746]

Jeez, my 30 days just kicked in. I had to grab my phone and input a 6 digit code that took me like 10 seconds to do. It's such and inconvenience that I have to do this again in 30 days.

Stop winging!

 

[dlockers]

I would hope that most of the frequent posters on this forum wouldn't fall for most of those tricks. You'd have to be really lacking in any security practices to fall for all of those.

Either way it's very interesting / eye opening. I'm pretty confident everything i use online is heavily locked down, so would be interested to see how far someone would get trying to get access to my data.

Post this on 4chan and see

 

[[FnG]magnolia]

Jeez, my 30 days just kicked in. I had to grab my phone and input a 6 digit code that took me like 10 seconds to do. It's such and inconvenience that I have to do this again in 30 days.

Indeed. Who would have thunk we had so many OCUK Karens?

 

[Semple]

Post this on 4chan and see

It'll be like a new version of that fad that was going around on reddit/twitter etc where people would post up a picture of themselves, and the public would absolutely rip into them about their appearance.

 

[V F]

It'll be like a new version of that fad that was going around on reddit/twitter etc where people would post up a picture of themselves, and the public would absolutely rip into them about their appearance.

Sounds like @Psycho Sonny he's the fashion sense around here.

 

[bulldog147]

What the point of 2FA on forum for? I can understand if you using it for shopping account online but seriously do u really need it for forum?

 

[Rroff]

Post this on 4chan and see

There was a thread in here awhile back - think it got deleted due to what happened - where a couple of people thought they were anonymous online and challenging people to doxx them - it didn't end well.

 

[TheSwede]

What the point of 2FA on forum for? I can understand if you using it for shopping account online but seriously do u really need it for forum?

As been said before in the thread. It is needed to protect those that using the Members Market, but since it can't be separated at the moment, the whole of the forum is needing the 2FA function.

 

[deuse]

Jeez, my 30 days just kicked in. I had to grab my phone and input a 6 digit code that took me like 10 seconds to do. It's such and inconvenience that I have to do this again in 30 days.

I have to do it every time I sign in.
I make sure the 30 box is ticked.

Could it be I clear out my browser cookies?

 

[dlockers]

I have to do it every time I sign in.
I make sure the 30 box is ticked.

Could it be I clear out my browser cookies?

Take the hint

 

[ThundyCat]

I have to do it every time I sign in.
I make sure the 30 box is ticked.

Could it be I clear out my browser cookies?

Yes 100%, if you're clearing cookies every time, then I suspect that's the issue.

 

[Deleted member 77746]

There was a thread in here awhile back - think it got deleted due to what happened - where a couple of people thought they were anonymous online and challenging people to doxx them - it didn't end well.

I would have loved to see that.

 

[Feek]

What the point of 2FA on forum for? I can understand if you using it for shopping account online but seriously do u really need it for forum?

How would you feel if someone managed to compromise your account, posted an MM thread and actually managed to get a member to pay them for some non existent items?

If that happened, we’d basically close the MM. There would be no trust in the system whatsoever.

 

[Deleted member 77746]

How would you feel if someone managed to compromise your account, posted an MM thread and actually managed to get a member to pay them for some non existent items?

If that happened, we’d basically close the MM. There would be no trust in the system whatsoever.

On a worse scale scenrio if it was the other way around and @bulldog147 was the one who got scammed, with no money to return from another user with a compromised account. Ouch!

 

[byeo]

Saw this post a week or so ago and activated 2FA as advised. Just checked my emails and received an email saying my login activation code is XXXXXX (bearing in mind I'd already activated it) I've now updated my password as suggested in the email as it looks like whoever got the info is definitely trying to get into accounts.

Thanks for the heads up OCUK.

 

[elrasho]

My phone has packed up and it had my MFA app on it. Luckily I have one PC that I clicked "remember for 30 days". However how can I "reset" my MFA to this forum so I can contribute from my new mobile?

 

[Deleted member 77746]

My phone has packed up and it had my MFA app on it. Luckily I have one PC that I clicked "remember for 30 days". However how can I "reset" my MFA to this forum so I can contribute from my new mobile?

What MFA app was it? If you used Authy then you could have logged into a PC with it and then also restore on a new mobile if you can no longer get into your current mobile.

MFA on here can be reset yeh, same way you set it up.

 

[Feek]

My phone has packed up and it had my MFA app on it. Luckily I have one PC that I clicked "remember for 30 days". However how can I "reset" my MFA to this forum so I can contribute from my new mobile?

I believe that you can go into your account and disable MFA then re-enable it. If you have an issue doing that, please start a thread in FCD and we’ll help you through it.