Topic: 📈 NastyFans: The Bitcoin Enthusiast Fan Club (est. 2012) - page 34. (Read 959540 times)
Another great addition to the family.
Thanks i dont remember to had acessed any other page to login at nastyfans, anyway i had changed my password to avoid any issue, and well im pretty happy since i dont use the same password at others places, thanks for letting me know about the issue.
Distribution 227 is posted. nastyfans thanks the donators.
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
window124 0.00578810 BTC per TH/s (164.4%)
window125 0.00634868 BTC per TH/s (182.4%)
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
window124 0.00578810 BTC per TH/s (164.4%)
window125 0.00634868 BTC per TH/s (182.4%)
It is shitty when people do that. Glad it is fixed.
The L3 and L3+ are nice units. Run very well. I will publish my reviews in a few days. I am finally getting caught up on the backlog of reviews.
The L3 and L3+ are nice units. Run very well. I will publish my reviews in a few days. I am finally getting caught up on the backlog of reviews.
THE HACK:
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
The effected users are:
nastyju
doamader
Please be aware of what sites you visit and if something appears out of place, always better to be safe than sorry. No 3rd party site should ever be given your NastyFans password or have a reason to ask.
LITECOIN MINING:
I've purchased a new L3+ miner from Bitmain, which will be our first scrypt asic miner!
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
The effected users are:
nastyju
doamader
Please be aware of what sites you visit and if something appears out of place, always better to be safe than sorry. No 3rd party site should ever be given your NastyFans password or have a reason to ask.
LITECOIN MINING:
I've purchased a new L3+ miner from Bitmain, which will be our first scrypt asic miner!
Were any password hashes potentially compromised?
The reported hack is for a 3rd party server. The coin analyzer site that uses only public minted seat data. That server has no private data of nastyfans members.
The hacked server displayed a faked nastyfans sign in page. The images on that page were broken and it was not SSL secure. But it looked enough like real site for some members to try to sign in. By trying to sign in those members provided their clear text passwords that were sent to the hacker. A typical phishing attack.
After OgNasty notified me of incident I personally investigated nastyfans logs for any suspicious activity. There is no evidence that any component of the official nastyfans infrastructure is compromised in any way. The phishing attack was on a 3rd party server where I have no access. So I have no possibility to know which members were fooled and provided their sign in data to the foreign party. OgNasty and that server owner (naypalm) are doing their part to investigate the issue.
The advice of OgNasty to change your password is a extra precaution but certainly not necessary for most members. I am not changing my password because I know I never signed in to the phishing site. But I did see the site.
The best advice was from Quickseller. Never use the same password on different sites. Never.
Thanks for your extra effort on this issue, and allround good responce!
Were any password hashes potentially compromised?
The reported hack is for a 3rd party server. The coin analyzer site that uses only public minted seat data. That server has no private data of nastyfans members.
The hacked server displayed a faked nastyfans sign in page. The images on that page were broken and it was not SSL secure. But it looked enough like real site for some members to try to sign in. By trying to sign in those members provided their clear text passwords that were sent to the hacker. A typical phishing attack.
After OgNasty notified me of incident I personally investigated nastyfans logs for any suspicious activity. There is no evidence that any component of the official nastyfans infrastructure is compromised in any way. The phishing attack was on a 3rd party server where I have no access. So I have no possibility to know which members were fooled and provided their sign in data to the foreign party. OgNasty and that server owner (naypalm) are doing their part to investigate the issue.
The advice of OgNasty to change your password is a extra precaution but certainly not necessary for most members. I am not changing my password because I know I never signed in to the phishing site. But I did see the site.
The best advice was from Quickseller. Never use the same password on different sites. Never.
THE HACK:
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
Were any password hashes potentially compromised?
It's good to know that the damage of the hack was minimal. It appears that someone has a vendetta against Nastyfans as there are a lot easier targets than the Nastyfans site that actually have BTC in hot wallets unlike you guys.
A lot of NastyFan seat holders are very early adopters of Bitcoin, and presumably many of them own large amounts of bitcoin. As such, some of them likely have large amounts of money at various exchanges and services, and if passwords are reused then gaining access to a user's NastyFan PW could presumably lead to large amounts of money elsewhere. The use of (truly) unique passwords at each website will mostly resolve this issue.
Good response to the hack, and welcome to the Litecoin mining world. Haven't tried fixing an L3 yet but have had great success with Titans....
It's good to know that the damage of the hack was minimal. It appears that someone has a vendetta against Nastyfans as there are a lot easier targets than the Nastyfans site that actually have BTC in hot wallets unlike you guys.
I should stress that the NastyFans site wasn't hacked. It was a 3rd party server hosted by a fellow fan. Honestly, 3rd party sites should never be trusted with your personal data anyway. I have faith that nonnakip has NastyFans.org locked down to the point where phishing attacks on users to get them to give up their password is probably the closest we'll ever come to a security breech.
I do urge everyone to log into their accounts to make sure that none of your addresses have been changed. While I do not believe any user login data outside of the 2 accounts mentioned above was phished, it's never a bad idea to check for yourself.
It's good to know that the damage of the hack was minimal. It appears that someone has a vendetta against Nastyfans as there are a lot easier targets than the Nastyfans site that actually have BTC in hot wallets unlike you guys.
THE HACK:
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
The effected users are:
nastyju
doamader
Please be aware of what sites you visit and if something appears out of place, always better to be safe than sorry. No 3rd party site should ever be given your NastyFans password or have a reason to ask.
LITECOIN MINING:
I've purchased a new L3+ miner from Bitmain, which will be our first scrypt asic miner!
On April 2nd, the 3rd party analyzer run by naypalm and linked from analyzer.nastyfans.org was compromised. A phishing site was injected into the index.html file and anyone who visited the analyzer would then view a malicious clone of the NastyFans login page. Any attempt to login would result in the username/password being emailed to a gmail account. We have learned that 2 users were effected by this hack and while no damage occurred, these two users have had their username/password data stolen and they should immediately change any shared passwords on other sites.
The effected users are:
nastyju
doamader
Please be aware of what sites you visit and if something appears out of place, always better to be safe than sorry. No 3rd party site should ever be given your NastyFans password or have a reason to ask.
LITECOIN MINING:
I've purchased a new L3+ miner from Bitmain, which will be our first scrypt asic miner!
What are the benefits of being a seat holder in the NastyFans project?
Do you get a share in the company and once the solar power is a go will you be able to purchase a miner perhaps?
Really interesting project you've got there OgNasty! The future's so bright you gotta wear shades.
Do you get a share in the company and once the solar power is a go will you be able to purchase a miner perhaps?
Really interesting project you've got there OgNasty! The future's so bright you gotta wear shades.
Thank you. We typically only sell miners when we're ready to upgrade.
I would recommend that you read the ABOUT and POLICY pages at NastyFans.org to get further clarification on the seats after reading the OP.
What are the benefits of being a seat holder in the NastyFans project?
Do you get a share in the company and once the solar power is a go will you be able to purchase a miner perhaps?
Really interesting project you've got there OgNasty! The future's so bright you gotta wear shades.
Do you get a share in the company and once the solar power is a go will you be able to purchase a miner perhaps?
Really interesting project you've got there OgNasty! The future's so bright you gotta wear shades.
The NastyMining Green Energy Project thread was voted a winner of the "Most Appreciated Post" contest on the Bitcoin.com forums! As a result, we have won 0.7 BTC that will be sent to the NastyMining holdings address!
Thats all very cool! Thanks too the people who voted!
Woot! Glad to hear it!
The NastyMining Green Energy Project thread was voted a winner of the "Most Appreciated Post" contest on the Bitcoin.com forums! As a result, we have won 0.7 BTC that will be sent to the NastyMining holdings address!
Thats all very cool! Thanks too the people who voted!
Distribution 226 is posted. nastyfans appreciates the donations.
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window121 0.00000972 BTC per TH/s (0.3%)
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
window124 0.00578810 BTC per TH/s (164.4%)
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window121 0.00000972 BTC per TH/s (0.3%)
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
window124 0.00578810 BTC per TH/s (164.4%)
The NastyMining Green Energy Project thread was voted a winner of the "Most Appreciated Post" contest on the Bitcoin.com forums! As a result, we have won 0.7 BTC that will be sent to the NastyMining holdings address!
Distribution 225 is posted. nastyfans thanks the donators.
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window120 0.00496228 BTC per TH/s (129.9%)
window121 0.00000972 BTC per TH/s (0.3%)
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
NastyPool solved block 459710 this week! Congratulations to NastyPoP miner 1N2ihXP7FYAJVuNhk3aHzCGFqPrgJQoZNR!
Last 4 weeks distribution NastyPoP payout rates (vs. expected):
window120 0.00496228 BTC per TH/s (129.9%)
window121 0.00000972 BTC per TH/s (0.3%)
window122 0.00000000 BTC per TH/s (0.0%)
window123 0.01414589 BTC per TH/s (385.4%)
NastyPool solved block 459710 this week! Congratulations to NastyPoP miner 1N2ihXP7FYAJVuNhk3aHzCGFqPrgJQoZNR!
Hey all fellow NastyFans. Auctioned a seat some time ago and I'm happy to be part of this enthusiast club. Sadly I have not so much to contribute our group but hope I'll come up with something in future. What I really like is the Green Energy Project, which to my opinion is a big step forward and we all should follow this path ( if only more of us could afford such thing ). Good job OgN you have made a NastyGood setup there (but the house is also pretty).
That's all I wanted to say. Looking fwd to further collaboration. Keep up being nasty.
BTW I'm curious whether the seats have some sort of numbering? Just to know to whom am I sit next to ( and fighting for the armrest with )
That's all I wanted to say. Looking fwd to further collaboration. Keep up being nasty.
BTW I'm curious whether the seats have some sort of numbering? Just to know to whom am I sit next to ( and fighting for the armrest with )
Thanks. Going solar has been a long time in the making.
Minted Seats are sequentially "numbered" using vanity addresses. Online seats don't have any designations that I'm aware of, although I'm certain it's possible. We would probably need to think of a cool use to implement something like that.
Jump to: