I haven't yet changed my password. i always forget my password that's why i always click the remember me button. but how true is it that the database was leaked a couple of days ago?
edited: i find it important so i changed my password
Topic: Bitcointalk database leaked? - page 2. (Read 2372 times)
Is this news an attempt to popularize the coins with anonymity and untraceable features like XMR, ZCASH, SDC and NAV?
I haven't yet changed my password. i always forget my password that's why i always click the remember me button. but how true is it that the database was leaked a couple of days ago?
edited: i find it important so i changed my password
I haven't yet changed my password. i always forget my password that's why i always click the remember me button. but how true is it that the database was leaked a couple of days ago?
edited: i find it important so i changed my password
I have also seen they publish the DB for sale on alphabey for a cheap price.
yeah they sell it for a cheap price but all the information is encrypted so i doubt that we have something to worry about right now 
https://www.hackread.com/hacked-bitcointalk-forum-database-on-dark-web/
should i be worried about it and change my password or thats just some kind of a bs?
should i be worried about it and change my password or thats just some kind of a bs?
It's real, the database was hacked last year... If you haven't changed your password since then, it might be wise to do so now.
I find it a little weird you didn't know about this, it was the hot topic for weeks when it happened
My password still not change until its 1 year old.. but i think should i change it right now before it will happen.. everything online is possible so better to change our account password.
https://www.hackread.com/hacked-bitcointalk-forum-database-on-dark-web/
should i be worried about it and change my password or thats just some kind of a bs?
should i be worried about it and change my password or thats just some kind of a bs?
Whoa! Didn't see that coming. I guess i should change my password too for safety purpose as i have not changed it from sometime now. I have also seen they publish the DB for sale on alphabey for a cheap price.
Yes, I saw that, $10 per account. I've heard the administrators here have already bought the database to see which accounts were compromised, and worked to resolve the issue accordingly. So really, it's only put up there to scam users of their hard earned Bitcoin, stay away from that listing.
Regardless if theres a threat of hack or non at all, we should be proactive in changing our passwords from time to time, it would not take too much time if you would do that every month, that means only 12 passwords in a year that you can prepare prior to changing of password day.
You are right , some members do not care about this point , even they use the same password to register in other sites , then they ask why my account has been hacked ? I think we must use a unique e-mail and password for such important forum .
Even it's still encrypted, the hackers still could hack your account if you use weak password or the hacker have hints for your password.
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
Yeah, they can just compare the hashes of the passwords to a known database and if the sha256 hash matches one in the database, the hackers knows the password as well.
You are quite safe if you use non dictionary, non common, non previously used passwords with such encryption in place, as it is almost impossible that it will appear in any rainbow table of any kind.
That's the way, using strong passwords and changing the password with or without any hack periodically...
Why bitcointalk don't use a 2FA? It would be nice for security
If anyone wants extra security for their account they can post their Bitcoin address in the thread linked to here.
https://bitcointalksearch.org/topic/stake-your-bitcoin-address-here-996318
Someone else quotes your address in that thread, then if your account gets hacked the hacker can't delete that quoted address. You can use it to get your account back by signing a Bitcoin message and sending it to Theymos. He will give you back your account if you can sign a message proving the account is yours.
I have also seen they publish the DB for sale on alphabey for a cheap price.
That's the way, using strong passwords and changing the password with or without any hack periodically...
Why bitcointalk don't use a 2FA? It would be nice for security
Because it is forum based on old software in times when no one even heard about 2FA? Why bitcointalk don't use a 2FA? It would be nice for security
And new forum software which will probably use 2FA functionality is in development for couple years already.
So there is very little reason to waste time and effort to update current version of Forum with new features.
Even it's still encrypted, the hackers still could hack your account if you use weak password or the hacker have hints for your password.
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
Yeah, they can just compare the hashes of the passwords to a known database and if the sha256 hash matches one in the database, the hackers knows the password as well.
You are quite safe if you use non dictionary, non common, non previously used passwords with such encryption in place, as it is almost impossible that it will appear in any rainbow table of any kind.
That's the way, using strong passwords and changing the password with or without any hack periodically...
Why bitcointalk don't use a 2FA? It would be nice for security
It's impossible to bruteforce a decent sha256 password so that is not a real concern, just don't use the same password anywhere else.
Wait, let me change my password. Oh, I just did, now I think I’m safe.
I’m not sure if this is genuine information or not but one should take extreme precaution. I was lazy about my online security but I did security audit of my online identity and found that my 70% online accounts was extremely vulnerable.
Thankfully I have a security schedule now and I change my password during a particular frequency and also enabled 2 factor authentication wherever possible.
I’m not sure if this is genuine information or not but one should take extreme precaution. I was lazy about my online security but I did security audit of my online identity and found that my 70% online accounts was extremely vulnerable.
Thankfully I have a security schedule now and I change my password during a particular frequency and also enabled 2 factor authentication wherever possible.
Regardless if theres a threat of hack or non at all, we should be proactive in changing our passwords from time to time, it would not take too much time if you would do that every month, that means only 12 passwords in a year that you can prepare prior to changing of password day.
In the meta section this was brought up after the DDOS attack. They mentioned that was from an attack last year, but I still feel that it's a good idea to change passwords just in case. After all, it's better to be safe than sorry, right?
Even it's still encrypted, the hackers still could hack your account if you use weak password or the hacker have hints for your password.
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
If you don't believe me, you might want to check this thread : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686
Yeah, they can just compare the hashes of the passwords to a known database and if the sha256 hash matches one in the database, the hackers knows the password as well.
You are quite safe if you use non dictionary, non common, non previously used passwords with such encryption in place, as it is almost impossible that it will appear in any rainbow table of any kind.
Old news. It happened a while ago. You don't have anything to worry about if you changed your password. If not, you better do it now than not to be sorry later.
As long as you changed your password & the email linked to your bitcointalk.org user account since the hack then this is a non issue & you have nothing to worry about.
Even though this hack event was a year old, it came into different hacker related site after someone tried to sell those data in darknet recently.
Quote
All passwords are encrypted, to break down in numbers; there are 469,540 passwords that are encrypted with the SHA-256 algorithm and 44,868 passwords encrypted with SMF password encryption.
I have read somewhere SHA-256 encrypted password are hard to decrypt isn't it? However using strong password like combination of words and number with special character is wise decision with ocassional change of password and using different password for different sites.Well Bitcoin uses SHA256 so it should be pretty safe. Any 10 character password with special characters and upper and lower case is already strong enough to not be able to get brute forced in a lifetime afaik.
Even though this hack event was a year old, it came into different hacker related site after someone tried to sell those data in darknet recently.
Quote
All passwords are encrypted, to break down in numbers; there are 469,540 passwords that are encrypted with the SHA-256 algorithm and 44,868 passwords encrypted with SMF password encryption.
I have read somewhere SHA-256 encrypted password are hard to decrypt isn't it? However using strong password like combination of words and number with special character is wise decision with ocassional change of password and using different password for different sites. https://www.hackread.com/hacked-bitcointalk-forum-database-on-dark-web/
should i be worried about it and change my password or thats just some kind of a bs?
should i be worried about it and change my password or thats just some kind of a bs?
Even if it's true or not, it's not wrong if you will modify your password after reading that article.
And besides if you really care to your forum account, you will do regular changes of your password at regular periods.
Jump to: