Author

Topic: Someone trying to get to my account? (Read 206 times)

full member
Activity: 490
Merit: 110
April 19, 2018, 01:25:33 PM
#24
@ridertiger : I think it is time to lock this topic, you got the answer and it is up to you to decide what to do.
Good idea! I will go ahead and lock it.
legendary
Activity: 2142
Merit: 1065
✋(▀Ĺ̯ ▀-͠ )
April 17, 2018, 12:41:16 PM
#23
@ridertiger : I think it is time to lock this topic, you got the answer and it is up to you to decide what to do.
sr. member
Activity: 588
Merit: 272
⭐⭐⭐⭐⭐
April 17, 2018, 12:01:25 PM
#22
So after the incident, is it necessary to keep changing password periodically ?

I think, too often changing password also fishy. Use a strong password (alphanumeric - didn't relate to you) it's enough. Don't ever use the same password for every account. If possible, don't ever tried to register at "unknown" sites.
full member
Activity: 484
Merit: 124
April 17, 2018, 11:48:28 AM
#21
AFAIK , this forum's password ever got leak so admin told to change the password.
So after the incident, is it necessary to keep changing password periodically ?
sr. member
Activity: 476
Merit: 359
April 17, 2018, 11:43:03 AM
#20
I hope the new bitcointalk will come out soon and hope this issue will be fixed there. It is very frustating if you got your account hacked, especially in this merit system and the process to get back the account is not that easy and fast.
sr. member
Activity: 588
Merit: 272
⭐⭐⭐⭐⭐
April 17, 2018, 11:33:28 AM
#19
yes, you need to change your password now, before anyone else uses your account, it would be nice if the email we entered in bitcointalk is valid because if someone else wants to try to log in to your account, there will be a notification because the password was entered incorrectly.

OP's email must be valid, cause OP gets some notification (password reset link from this forum) that someone was trying to resetting OP's account password.

Nahh..I think OP didn't need to change the password as well, everyone here also can do it to your account nor everyone account with just use our username.
legendary
Activity: 3066
Merit: 1147
The revolution will be monetized!
April 17, 2018, 10:33:41 AM
#18
Never use links in a warning email.Go to the website yourself.
hero member
Activity: 1624
Merit: 500
April 17, 2018, 10:28:14 AM
#17
yes, you need to change your password now, before anyone else uses your account, it would be nice if the email we entered in bitcointalk is valid because if someone else wants to try to log in to your account, there will be a notification because the password was entered incorrectly.
member
Activity: 322
Merit: 23
April 17, 2018, 08:18:12 AM
#16
Just separate next your password in an email address and those accounts that you log in. For example account here in bitcointalk forum you should not be having the same password. Or click any website that asking information or maybe those airdrops they might have the possibility of a scam purposed by entering a phishing site.
You have a right to change your password as long as that you notified here to change your password for a valid reason.
jr. member
Activity: 50
Merit: 1
April 17, 2018, 08:03:05 AM
#15
I received this in the mail today:
This mail was sent because the 'forgot password' function has been applied to your account. To set a new password click the following link:
And the IP comes out as New Zealand.
So, should I change my password or what?

In my opinion, this is not something big to worry about. One can easily find emails used for registering on this forum even if you have not shared it in public. There are tools for this which can automatically check thousands of emails. One can easily send the password reset also as it just requires them to enter the email.


If you see someone doing this repetitively, you may consider changing the email. This way he will not be able to annoy you by sending same password reset link on the mail again and again.
copper member
Activity: 1330
Merit: 899
🖤😏
April 17, 2018, 02:59:54 AM
#14
Now you have your excuse to change password.

#Votedigaran.
legendary
Activity: 1302
Merit: 1027
April 17, 2018, 02:02:29 AM
#13
Yeah, I think people just use the forgot password option and it sends you an email. Normally, you do not have to do a thing I believe, but it makes you uneasy.

I think someone tried to play with your account so i think you dont have to change your password but if you think that you have used this password somewhere else then better to change the password this is for your safety as if you have used the same email some where else so they tried to open your account.
full member
Activity: 490
Merit: 110
April 17, 2018, 01:27:53 AM
#12
Yeah, I think people just use the forgot password option and it sends you an email. Normally, you do not have to do a thing I believe, but it makes you uneasy.
full member
Activity: 378
Merit: 100
April 17, 2018, 01:06:30 AM
#11
I received this in the mail today:
This mail was sent because the 'forgot password' function has been applied to your account. To set a new password click the following link:
And the IP comes out as New Zealand.
So, should I change my password or what?
Seems, it has been long time since you're not change the password, it would be better by this case you will change it .
Go to Your Forum Profile > Account Related Settings > Choose password

I got the same e-mail about two days ago, but I wasn't sure exactly what it was referring to--either a new feature notification or that someone had actually tried to crack my password using the "forgot password" option.  Now I'm assuming that the e-mail I got means the latter.  Interesting.  

Gee, why would anyone want to hack me? Kiss
Maybe someone jealous with your account jeez Cheesy
full member
Activity: 966
Merit: 153
April 17, 2018, 12:58:32 AM
#10
I would change my password if I were you, but definitely not from the link provided by the anonymous person, change it directly from the forum. And like others have said, hide your email. And besides, it's not every link you see on the forum that you should click on. Some users are only here to monitor many user's activities and hack accounts since the new system makes it hard for them to rank up. 
full member
Activity: 476
Merit: 107
April 16, 2018, 04:55:56 PM
#9
This is just my suggestion though, but could theymos make the forgot password more secure by requiring users to provide other information first besides username? That way, situations like what OP experienced will be lessened. Also I think the forum users would be safer if the forum will have a 2fa authentication feature where users can opt to use it to make accounts less prone to hacking.
sr. member
Activity: 588
Merit: 272
⭐⭐⭐⭐⭐
April 16, 2018, 03:05:38 PM
#8
You don't need anything other than the username to request a new password for an account.

It can be someone play for fun, also. They know will need the link that sent to email to change an account password, but they haven't access to user email that they tried to reset, then what they expect, right?



Not saying my password is uncrackable, but it's fairly strong and I'm confident I'm not going to get hacked.  And I don't respond to phishing things or download weird programs.  I'd advise everyone to adhere to those things as well.  I think that's how a lot of people get hacked.

And also, don't use the same password for the different account, moreover same as email password. Because sometimes, people have a secure password (let's say alphanumeric) and using it for a few accounts including email. Imagine when one of that account is on weak sites. Bang....!!!  Cry
legendary
Activity: 3528
Merit: 7005
Top Crypto Casino
April 16, 2018, 02:00:44 PM
#7
The worst addicts are the ones who have the keys to those kinds of safes already.  LOL.  Nevertheless, I'm not worried about some pharmaceuticals getting yoinked from me.  Scammers could probably pull off some serious shenanigans if they were able to access my account--and then I'm sure no one would believe me when I said I got hacked, because I'm so cynical about those claims.  Could be an ugly situation for me.

Not saying my password is uncrackable, but it's fairly strong and I'm confident I'm not going to get hacked.  And I don't respond to phishing things or download weird programs.  I'd advise everyone to adhere to those things as well.  I think that's how a lot of people get hacked.
newbie
Activity: 19
Merit: 26
April 16, 2018, 01:41:40 PM
#6
/srs : I fail to understand why retrieving your password by entering your username is enabled. Email is sufficient and more secure.

What if you can't remember the email address you used?

Though I agree this process could be improved, because even still the user will have to check every email acccount for the email.

For example a better process would be, user enters their username, website shows the user the first few characters of the email and domain ( such as una******@gma**.com) and asks them to enter the full email before sending the reset email. Whether the email is correct or not, you display the same message such as "If that is the correct email address a reset email will be sent to it". Though the problem here is you risk exposing the users email address (such as in my example the you could easily guess the email is [email protected]) however it is the process that most of the big websites are using right now and seems like a fairly good balance between security and usability.
legendary
Activity: 2142
Merit: 1065
✋(▀Ĺ̯ ▀-͠ )
April 16, 2018, 01:32:20 PM
#5
-snip-
Gee, why would anyone want to hack me? Kiss

Well you know, who doesn't want to broke your pharmacy Tongue


/srs : I fail to understand why retrieving your password by entering your username is enabled. Email is sufficient and more secure.
legendary
Activity: 3528
Merit: 7005
Top Crypto Casino
April 16, 2018, 01:15:33 PM
#4
I got the same e-mail about two days ago, but I wasn't sure exactly what it was referring to--either a new feature notification or that someone had actually tried to crack my password using the "forgot password" option.  Now I'm assuming that the e-mail I got means the latter.  Interesting. 

Gee, why would anyone want to hack me? Kiss
legendary
Activity: 2758
Merit: 6830
April 16, 2018, 01:13:03 PM
#3
You don't need anything other than the username to request a new password for an account. This means that I can use 'forgot password' function for any account in the forum without needing to provide any special information (not even the account email).

So changing your password shouldn't be necessary.
legendary
Activity: 2142
Merit: 1065
✋(▀Ĺ̯ ▀-͠ )
April 16, 2018, 01:03:12 PM
#2
I received this in the mail today:
This mail was sent because the 'forgot password' function has been applied to your account. To set a new password click the following link:
And the IP comes out as New Zealand.
So, should I change my password or what?

Whether someone trolling or you exposed your email somewhere. Another possibility is that the link you received is forwarding you to a phishing site.
Change your password if you want in your profile here.
full member
Activity: 490
Merit: 110
April 16, 2018, 12:26:09 PM
#1
I received this in the mail today:
This mail was sent because the 'forgot password' function has been applied to your account. To set a new password click the following link:
And the IP comes out as New Zealand.
So, should I change my password or what?
Jump to: