CLOUDMINR.IO DATABASE HACKED! CHANGE YOUR PASSWORDS A.S.A.P!

BitcoinRichman

full member

Activity: 196

Merit: 100

Quote from: TheNewAnon135246 on July 14, 2015, 02:01:58 AM

Quote from: ColderThanIce on July 13, 2015, 07:38:29 PM

Quote from: TheNewAnon135246 on July 13, 2015, 10:11:38 AM

Quote from: yeponlyone on July 13, 2015, 06:55:29 AM

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

--- Little surprised that they stored all passwords in plain text though, that's some terrible security.

Is that the whole database...? It could be just the password's the hackers were able to crack. I can't see a single complex password in the list.

The list is just a few examples of accounts to verfy that it's real. The complete list holds over 5,000 accounts

I had heard that the whole entire leak was actually more like 80,000 accounts. I remember reading here that someone was offering up 5000 account logins so users could vouch for the validity of the leak. Not sure why that was happening though, as it was verified to be valid with the original 1000 leaked account details.

Yeah my bad. They also advertised selling 'over 70,000 accounts'.

may be he try to log in that email before sell it...

TheNewAnon135246

legendary

Activity: 2198

Merit: 1989

฿uy ฿itcoin

Quote from: ColderThanIce on July 13, 2015, 07:38:29 PM

Quote from: TheNewAnon135246 on July 13, 2015, 10:11:38 AM

Quote from: yeponlyone on July 13, 2015, 06:55:29 AM

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

--- Little surprised that they stored all passwords in plain text though, that's some terrible security.

Is that the whole database...? It could be just the password's the hackers were able to crack. I can't see a single complex password in the list.

The list is just a few examples of accounts to verfy that it's real. The complete list holds over 5,000 accounts

I had heard that the whole entire leak was actually more like 80,000 accounts. I remember reading here that someone was offering up 5000 account logins so users could vouch for the validity of the leak. Not sure why that was happening though, as it was verified to be valid with the original 1000 leaked account details.

Yeah my bad. They also advertised selling 'over 70,000 accounts'.

BitcoinRichman

full member

Activity: 196

Merit: 100

official ann from Cloudminr

Hello,

This is a public service announcement.

Your username, email address, and password for cloudminr.io has been compromised. Earlier today, it was posted at http://cloudminr.io for the world to see.

If you use that same password anywhere else, please change it immediately.

Regards,

Quigley
GetHashing

ColderThanIce

sr. member

Activity: 373

Merit: 252

Quote from: TheNewAnon135246 on July 13, 2015, 10:11:38 AM

Quote from: yeponlyone on July 13, 2015, 06:55:29 AM

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

--- Little surprised that they stored all passwords in plain text though, that's some terrible security.

Is that the whole database...? It could be just the password's the hackers were able to crack. I can't see a single complex password in the list.

The list is just a few examples of accounts to verfy that it's real. The complete list holds over 5,000 accounts

I had heard that the whole entire leak was actually more like 80,000 accounts. I remember reading here that someone was offering up 5000 account logins so users could vouch for the validity of the leak. Not sure why that was happening though, as it was verified to be valid with the original 1000 leaked account details.

arallmuus

legendary

Activity: 2562

Merit: 1414

Quote from: OmegaStarScream on July 13, 2015, 10:50:46 AM

Website went down after the hacking ?? If not it's probably the website owner who are selling the databse .

This is an exit strategy from cloudminr.io and there is no hacked incident here . Last few weeks before it was "hacked" the site offer a huge discount as well as increasing the payout of their ghs and then suddenly it stopped and claimed it was hacked . This is a simple, similar and common reason for all the cloudmining ( pbmining, ltcgear, cloudminr used the same reason as well as the other which I am not aware of )

https://bitcointalksearch.org/user/cloudminrio-390933

Above is the main account of cloudminr.io and you can see that they actually deleted almost all of their post, including those from social media. Truly an exit strategy from the looks above and probably they could have been back with another HYIP / ponzi by the time you are reading my post

TheNewAnon135246

legendary

Activity: 2198

Merit: 1989

฿uy ฿itcoin

Quote from: OmegaStarScream on July 13, 2015, 10:50:46 AM

Website went down after the hacking ?? If not it's probably the website owner who are selling the databse . What's shocking for me is that the guy didn't get banned yet which I don't really get it , even if staff members don't do anything about potentional scams and stuf f, they should do something about the spamming going on , Digital goods , Game & rounds , Services they are all fucked up and he is even paying people to spread the same thing

I have reported all of the posts and left everybody with negative feedback. Only 1 topic got deleted, the rest is still up Undecided

. Staff should delete this stuff asap because a lot of those login details are from their own users.

OmegaStarScream

staff

Activity: 3500

Merit: 6152

Website went down after the hacking ?? If not it's probably the website owner who are selling the databse . What's shocking for me is that the guy didn't get banned yet which I don't really get it , even if staff members don't do anything about potentional scams and stuf f, they should do something about the spamming going on , Digital goods , Game & rounds , Services they are all fucked up and he is even paying people to spread the same thing

bitcoin1387

full member

Activity: 154

Merit: 100

The most incredible and people still signing up in that kind of site and putting money into it.

TheNewAnon135246

legendary

Activity: 2198

Merit: 1989

฿uy ฿itcoin

Quote from: yeponlyone on July 13, 2015, 06:55:29 AM

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

--- Little surprised that they stored all passwords in plain text though, that's some terrible security.

Is that the whole database...? It could be just the password's the hackers were able to crack. I can't see a single complex password in the list.

The list is just a few examples of accounts to verfy that it's real. The complete list holds over 5,000 accounts

yeponlyone

hero member

Activity: 504

Merit: 500

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

--- Little surprised that they stored all passwords in plain text though, that's some terrible security.

Is that the whole database...? It could be just the password's the hackers were able to crack. I can't see a single complex password in the list.

ColderThanIce

sr. member

Activity: 373

Merit: 252

Quote from: cazkooo on July 12, 2015, 04:57:46 PM

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

Little surprised that they stored all passwords in plain text though, that's some terrible security.

What do you expect from a scam ponzi cloud mining anyway? do you expect they will have a very great security like bitmain? They come and go and dont need a top security for the data because they only need to pay the investor using money from another investor.

That's a fair point. It seems so easy to implement password encryption and salting though, a little surprised they wouldn't do so. It could also be argued that they were farming account details from their users as well as running a ponzi, seeing as their whole database was unencrypted. I wouldn't be surprised if they were planning on doing that as well.

cazkooo

legendary

Activity: 1540

Merit: 1013

Quote from: ColderThanIce on July 12, 2015, 04:40:13 PM

Little surprised that they stored all passwords in plain text though, that's some terrible security.

What do you expect from a scam ponzi cloud mining anyway? do you expect they will have a very great security like bitmain? They come and go and dont need a top security for the data because they only need to pay the investor using money from another investor.

ColderThanIce

sr. member

Activity: 373

Merit: 252

I saw this earlier today on Reddit. Sounds like at least a couple people there are busy working on a script to email everyone affected (at least in that small leak, don't think they're going to purchase the whole leak to notify everyone) and let them know what happened. Little surprised that they stored all passwords in plain text though, that's some terrible security.

TheNewAnon135246

legendary

Activity: 2198

Merit: 1989

฿uy ฿itcoin

Quote from: ThEmporium on July 12, 2015, 03:35:26 PM

Big thanks for this useful information, so far I haven't created an account in that But very valid post.

You're welcome. Some people have verified that the log in details are working on email accounts, bitcointalk accounts etc. so the data is legit.

ThEmporium

full member

Activity: 196

Merit: 100

Big thanks for this useful information, so far I haven't created an account in that But very valid post.

TheNewAnon135246

legendary

Activity: 2198

Merit: 1989

฿uy ฿itcoin

Just a friendly warning. The cloudminr.io database is for sale. They are showing a batch of accounts for free (as proof) and they are working on bitcointalk accounts, email accounts etc. If you ever used that website you should change your passwords a.s.a.p!

http://cloudminr.io/

Topic: CLOUDMINR.IO DATABASE HACKED! CHANGE YOUR PASSWORDS A.S.A.P! (Read 1306 times)