Potential ResetEra Data Breach (Appears to be False, See Threadmark)

B-Dubs · Mar 6, 2020

Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Admiral Woofington · Mar 6, 2020

Mathieran said:
Why the hell would anyone bother with hacking data on this site?

are you unaware there is like an obsessed faction from Kiwi Farms and others keeping tabs on folks here and laughing at discussions? Regardless it has been cleared up.

Ferrs · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Thanks for the update.

Mathieran said:
Why the hell would anyone bother with hacking data on this site?

Hating on this site is literally the only reason some people seems to live for. It's crazy. And sad.

Hiphopopotamus · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Thanks for the clarity, B-Dubs. These idiots love chaos, so I am glad we can tamp down on any panic before they get their lulz

Kyuuji · Mar 6, 2020

PuppetMinion · Mar 6, 2020

Nice this resolved so quickly.

But I seriously hope people don't reuse passwords... Seriously, not an good idea unless you truly don't care about those particular cases

RadzPrower · Mar 6, 2020

BDS said:
Luckily I use a password manager so no two sites have the same password. Everyone else should too.

Starting using one over the holidays. I don't actually know most of my passwords. The only exceptions are ones that I can't use the manager for and even then they've got different unique passwords at least.

It's so much more secure and easier.

FUN FACT: Twitter will accept a password that is 128 characters long.

Gemüsepizza · Mar 6, 2020

Not going to link to this crap, but if you want to know who this person is, this is what she published recently on Russia Today:

Ricky_R · Mar 6, 2020

Changed mine to "BringBackHindle" so it's all good.

El Bombastico · Mar 6, 2020

Good thing my email for this site is one I don't use it for anything else.

Mathieran said:
Why the hell would anyone bother with hacking data on this site?

Tyler Malka is lonely.

Brass Body Dave · Mar 6, 2020

I wouldn't worry about passwords so much, but instead the email addresses used since they don't allow free ones.

Einchy · Mar 6, 2020

RadzPrower said:
FUN FACT: Twitter will accept a password that is 128 characters long.

Make your password the dril flag tweet.

Squarehard · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

When your life is so sad that this is the highlight of it.

Thanks for the update.

Deleted member 49611 · Mar 6, 2020

they can have my account if they want.

i do use the password for this site on some others but those are sites i really don't care if i lose access to. the email i have for on here i don't use anywhere else. my ISP gives me disposable emails so on the rare occasion i need to use an ISP email i just make one then delete it.

SpottieO · Mar 6, 2020

Brass Body Dave said:
I wouldn't worry about passwords so much, but instead the email addresses used since they don't allow free ones.

Since when? Could have sworn I signed up using a free account.

mhayes86 · Mar 6, 2020

It doesn't hurt to change your passwords or consider 2FA regardless, but I thought it was suspect considering who reported on it. Why would they seem to care unless the site was actually on fire so they could celebrate?

El Bombastico · Mar 6, 2020

SpottieO said:
Since when? Could have sworn I signed up using a free account.

Only the initial sign ups allowed free accounts. After a month or so it was back to paid email accounts only.

vypek · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Thanks for the update. But could you threadmark this and change the title for people just coming into the thread?

Deleted member 55966 · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Thanks for the quick update. Might be a good idea to threadmark this post or paste it to the OP Falchion B-Dubs.

Brass Body Dave · Mar 6, 2020

SpottieO said:
Since when? Could have sworn I signed up using a free account.

you probably did before they enacted it

jett · Mar 6, 2020

Welp I changed my password just in case, not that I reuse them.

RadzPrower · Mar 6, 2020

Brass Body Dave said:
I wouldn't worry about passwords so much, but instead the email addresses used since they don't allow free ones.

Jokes on them...I never use that email address anyhow. It just came with my Internet service.

The Adder · Mar 6, 2020

Ah yes, known liar and shit stirrer Sophia Narwitz. The same scuzz ball that went crawling through the Boyega topic trying to frame black posters' sarcasm as racist sentiment.

She's a piece of shit.

BebopCola · Mar 6, 2020

My Era password is the same as the one I use for my luggage. Uncanny!

Chucker · Mar 6, 2020

This person has stirred up shit against here in the past, haven't they? I recognize the name as somebody I would never pay attention to.

Stop It · Mar 6, 2020

Gemüsepizza said:
Not going to link to this crap, but if you want to know who this person is, this is what she published recently on Russia Today:

Continuing to grind that axe. Look at their Twitter feed. Absolutely not in good faith.

Gentlemen · Mar 6, 2020

Brass Body Dave said:
I wouldn't worry about passwords so much, but instead the email addresses used since they don't allow free ones.

???

You can sign up with a gmail account.

This "journalist" can't be bothered to do basic fact checking before posting another "hey everyone there's a list of logins for a common alt-right target that doesn't want you to know about it! But don't look at it tee-hee!" joined at the hip with the usual gamergate 'they don't like me' polemic.

Edit: Oh I guess that was changed? oh well keep out the plebs

SpottieO · Mar 6, 2020

El Bombastico said:
Only the initial sign ups allowed free accounts. After a month or so it was back to paid email accounts only.

Brass Body Dave said:
you probably did before they enacted it

That makes sense, I think I registered like the first day.

Deleted member 1726 · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

How can we be sure this isn't an elaborate ruse and the troll hasn't gained access to B-Dubs account?

🤔

/s adding this just to avoid confusion

R0b1n · Mar 6, 2020

Brass Body Dave said:
I wouldn't worry about passwords so much, but instead the email addresses used since they don't allow free ones.

The Email address I used is...very very outdated and isn't in active use

I wouldn't sign up for a forum with my active work/ISP email

Deleted member 5086 · Mar 6, 2020

We pushed out a site-wide notice for the update we made to the General Guide the other night.

Mgs2master2 · Mar 6, 2020

Chessguy1 said:
If this is real, ResetEra is over.

As far as i know, no company has survived a data breach.

ESA seems to be doing just fine as well as others after a hit.

Deleted member 39374 · Mar 6, 2020

This place still requires you to sign up with a work/school/paid email, right? Kinda scary and bad OPSEC. You can get doxxed very easily

Squarehard · Mar 6, 2020

But the one thing I did learn from this thread, this person who "reported" the issue is also a troll.

Mathieran · Mar 6, 2020

Admiral Woofington said:
are you unaware there is like an obsessed faction from Kiwi Farms and others keeping tabs on folks here and laughing at discussions? Regardless it has been cleared up.

Ferrs said:
Thanks for the update.

Hating on this site is literally the only reason some people seems to live for. It's crazy. And sad.

that is fucking weird. I guess that reinforces why I don't speak directly about who I am then

Fuzzy · Mar 6, 2020

Did none of the affected users have 2FA on their account?

Admiral Woofington · Mar 6, 2020

Polymerization said:
This place still requires you to sign up with a work/school/paid email, right? Kinda scary and bad OPSEC. You can get doxxed very easily

I think theres more pros than cons, plus you can request afterwards to switch to your personal email if need be.

Falchion · Mar 6, 2020

deprecated said:
Thanks for the quick update. Might be a good idea to threadmark this post or paste it to the OP Falchion B-Dubs.

Done

Deleted member 5086 · Mar 6, 2020

Fuzzy said:
Did none of the affected users have 2FA on their account?

No, which is why we've added that as advice in our FAQ.

Deleted member 43084 · Mar 6, 2020

Gemüsepizza said:
Passwords are usually stored as hashes, not in clear text.

Even in 2020, as Have I Been Pwned demonstrates time and time again, that is a very bad assumption.

Mzril · Mar 6, 2020

You guys store passwords as salted hashes right?

Perfect Chaos · Mar 6, 2020

Gemüsepizza said:
Not going to link to this crap, but if you want to know who this person is, this is what she published recently on Russia Today:

God I laugh every time I see something like this. Thanks for the update B-Dubs.

Gentlemen · Mar 6, 2020

Mathieran said:
that is fucking weird. I guess that reinforces why I don't speak directly about who I am then

It really goes beyond stalking too. people have been doxxed and swatted *just for being a ResetEra member*
There are a nonzero number of psychopaths with a chip on their shoulder looking for any morsel of personal information shared here.
People like the "journalist" in the OP enable this behavior, especially with their actions during the E3 breach.

Deleted member 862 · Mar 6, 2020

Mzril said:
You guys store passwords as salted hashes right?

hmmm salted hash

Admiral Woofington · Mar 6, 2020

Mzril said:
You guys store passwords as salted hashes right?

i store them as slips of paper I put in various pigeons throughout the city. Which reminds me if you see a pigeon with a slip of paper that says 'password123456' ignore it, that's just a song.

Deleted member 41178 · Mar 6, 2020

B-Dubs said:
Official Staff Communication

Let's clear this up: Our tech team investigated claims of a data breach and found no evidence of such on our end. We have no reason to believe our database has been compromised. What appears to have happened is that a determined troll gained access to a small number of accounts through known-leaked passwords (from breaches on other sites) and/or brute forcing weak passwords. One of the IPs used by the troll in question, not to mention the writing style, matches those used by a banned member who has long been engaged in alt right harassment against our community.

With all of that in mind we declined to engage the troll. What we did do is force the affected accounts to reset their passwords, and each of those individuals was contacted to inform them of what happened. We also updated our General Guide with recommendations on personal and account security.

Again, we have no reason to believe there has been a data breach, but both here and everywhere all members should take care to use strong passwords that are unique to each site.

Are you able to confirm that passwords are stored encrypted and not in plain text?

Cien · Mar 6, 2020

Well, turned on 2FA, so I should be a bit better protected.

R0b1n · Mar 6, 2020

minimaxir said:
Even in 2020, as Have I Been Pwned demonstrates time and time again, that is a very bad assumption.

It's shocking how many companies still do that

dingobingo · Mar 6, 2020

The far right/ Russians are probably focusing on this site.

Anoregon · Mar 6, 2020

Mzril said:
You guys store passwords as salted hashes right?

Naa they got high blood pressure

Kyuuji · Mar 6, 2020

xenForo (the forum software) should have baseline encryption and salting if installed and implemented correctly.
Users should be using 2FA regardless if concerned about their account.

Potential ResetEra Data Breach (Appears to be False, See Threadmark)

That's some catch, that catch-22

The Favonius Fox

One Winged Slayer

Deleted member 49611

User requested account closure

Community Resettler

One Winged Slayer

One Winged Slayer

Bad Cat

User requested account closure

User requested account closure

One Winged Slayer

Completely non-threatening

User requested account closure

Attempted to circumvent ban with alt account

User requested account closure

User requested account closure

The Favonius Fox