Author

Topic: Someone trying to GUESS? my pasword on bitcointalk[possible attack?] (Read 575 times)

legendary
Activity: 2324
Merit: 1039
Well what is his goal with this ? it looks like that persons just spamming your inbox as using the "forgot my password" function just sends an e-mail and not refreshing the pass (unless you click) and if that person had access to your e-mail it wouldn't require more than one.
Is this some kind of DDOS attack? and doesn't the website have some limitations on it?

What i done at the beggining, i posted image with link to reset the password. Maybe someone tried to get image like and just type letter by letter and number by number in to search bar.
Once i realised link is visible i changed password at forum, secured my email with 2 authentication code and deleted image from post.

I dont know.
Im not good in any of these hacking stuff but once you got within 2-3 hours more than 140 attempts to reset your password you asking yourselve questions.

Obviously bitcointalk have no limitation in such thing like login or resetting password.

If that would be DDOS attack its quite weird.

hero member
Activity: 588
Merit: 500
Well what is his goal with this ? it looks like that persons just spamming your inbox as using the "forgot my password" function just sends an e-mail and not refreshing the pass (unless you click) and if that person had access to your e-mail it wouldn't require more than one.
Is this some kind of DDOS attack? and doesn't the website have some limitations on it?
legendary
Activity: 1176
Merit: 1280
May Bitcoin be touched by his Noodly Appendage
Hmm maybe the guy thinks he has access to your mail account... I'd change the pass.

I know next to nothing about this thingies, but maybe it's the exact think this nasty man wants? So he can capture that data, while now he can't? (Because for evample s1lverbox set to be logged in forever, so he doesn't have to type his pass while logging)

Sorry, I meant the mail pass
newbie
Activity: 47
Merit: 0
Hmm maybe the guy thinks he has access to your mail account... I'd change the pass.

I know next to nothing about this thingies, but maybe it's the exact think this nasty man wants? So he can capture that data, while now he can't? (Because for evample s1lverbox set to be logged in forever, so he doesn't have to type his pass while logging)
legendary
Activity: 2324
Merit: 1039
Hmm maybe the guy thinks he has access to your mail account... I'd change the pass.
If it continues spamming you should ask theymos to do something. Maybe banning that IP or limiting the number of passworg-forgotten requests per hour.

I thought that forum have this feature about flooding with login attempts. but obviously not. Plus the fact that even if Ip will be banned -its only proxy service.
Password already changed for very flippin difficult.

Plus 2 way authentication.
legendary
Activity: 1176
Merit: 1280
May Bitcoin be touched by his Noodly Appendage
Hmm maybe the guy thinks he has access to your mail account... I'd change the pass.
If it continues spamming you should ask theymos to do something. Maybe banning that IP or limiting the number of passworg-forgotten requests per hour.
legendary
Activity: 2324
Merit: 1039
The forum doesn't block images but you must put the image URL and imgur.com/xxx isn't the image URL
Put i.imgur.com instead

Thanks for advice.
legendary
Activity: 1176
Merit: 1280
May Bitcoin be touched by his Noodly Appendage
The forum doesn't block images but you must put the image URL and imgur.com/xxx isn't the image URL
Put i.imgur.com instead
legendary
Activity: 2324
Merit: 1039
Hi i did open my mozilla client to check emails and was flooded by more than 100 emails from bitcointalk that password has been forgot.



Photos of my mozilla:




and one message:



and now to check who trying to get access: http://217.174.254.150.ipaddress.com/
which is proxy. so someone trying to guess or get access to my account.

Anyone have same issue?
Jump to: