Majorgeeks.com Support Forum Pwned?

Thanks.
I had to go here.
http://www.wordwebonline.com/search.pl?ww=7&w=tempus fugit

 

I just copy/paste things like that in the start button/ search the internet.

 

Your database was posted on a few hacking forums and in the hands of multiple other hackers, I obtained a copy to see if it was real about a week ago.

Seeing it was real I passed it onto the people who can get the message of the breach out, If you would like me to pass on a copy of the breached data to you I can but I will send it in a secure way.

As for your email not showing that was odd, I tried your email used here on Have I Been Pwned and it did show now. It's possible not all data had been loaded by that point though.

 

Huh. I suppose that explains why the other site listed on the pwned website didn't email me to tell me my password to their forums was compromised...

 

Just so you know, the security letter got dumped in my spam folder.

 

Did Major Geeks really suffer a data breach? Or is the email I received spam?

 

I only got the email today, 08-Mar-16 and have no idea what is going on...
I would be grateful if someone could update me as to what happened and when.

 

So if it happened in Nov-15, why did I get the email today?

 

Came through fine here a little over an hour ago.

For anyone who finds this in their spam folder, please ensure that you mark it as not spam and also white list it.

(If you have emails from a previously subscribed list/site that you no longer want, don't mark them as spam, use the Unsubscribe link at the foot of the email - but don't do this for real spam!)

 

satrow - good advice. That last sentence should be paid attention to.

I got the descriptive notice in the inbox. Also had one previously for my password change. Even showed the ip the change was sent from. My ip changes due to wireless but it is within the range expected. MG goes to my inbox since I earlier saved a newsletter which adds the sender to approved list.

as far as the concern- none of my accounts - with similar names and passwords- none- have had any unusual activity yet. I would be interested to see if any has had any as aresult of this.

 

None here.

 

a few more members to log in and we may finally out-number the robots! Heh heh!!

 

Ive just recieved this mail . is it genuine as I logged in using my usual password.
https://gallery.mailchimp.com/11e02cf9dc4ef3eb0ab4606ef/images/mglogo.1.jpg
Unfortunately, it has been brought to our attention that there may have been a data breach of our old 3rd party forum software (vBulletin 3.x) someplace around November of 2015.

According to credible reports, a hacker was able to gain access and export a list which included; user name, registered email and encrypted passwords. Encrypted or not, as a rule you should assume the password is possible to decrypt and protect against it.

As such we have instituted a policy that will force a password change on all accounts, rendering the old password useless. Our new forums software also allows for two-step authentication of user accounts, if you desire higher security.

Unfortunately, many people use the same user/password combination at multiple places. So, you should take care to change your passwords on systems which did in fact use the same password you used at the MajorGeeks Forums.

If you have any questions, please email me (jim@majorgeeks.com) directly.

Our sincere apologies for the inconvenience.

Jim and Tim.

 

My tuppence: whenever you get a message like this (from a place you recognise!) -- log in and change your password

 

I am utterly astounded that folks are posting in this thread, which explains from the very first post what happened, asking what happened.

 

Butbutbuthottubbutbut... oh, you must be new to forums

 

LOL! No, not at all. I just don't get how they even knew to comment on this thread in particular without reading it.

 

... butbutbutbut... oh, ok.

I'm actually more surprised that the thread stayed on topic for so long. Post#13 is usually the point at which it goes waaaaaaaaaaaay offtopic. Here we are at Post#74 and it's still, ah, wait, no...

Oops.

 

It might just be Comcast. Mail from my own office has a 50/50 shot at being dumped in spam if it's sent to the general mailing list.

 

and yet...for the first time in a LONG time, I logged in, just to check on that e-mail....and used my old log in details with no prompt so far to update anything.

 

because..you go looking, hit "last page", and here you are. Easy.

 

Just like to mention I haven't received the email and I have checked spam logs in case of deletion.
I also checked my other mail accounts, spam folders and infected folders as I sometimes forward mail to my mail server. I have received newsletter emails from MGs without any issues so

Hmmm..... maybe it is just a slow trip all the way to Australia lol

BTW when I changed my password it took a couple of shots to log back in..... it might have been a typo but I didn't think so any way it is all good now and MGs remembers me

Edit: I also checked my MG contact details and all is correct

 

I go away for a work day and the thread doubles in size...

I got the alert email into my inbox, by the way. And I do greatly appreciate that it was sent out in a mobile-friendly format, which made it very easy to read on my phone.

 

Same here.

 

I sent an email to jim {@} majorgeeks.com regarding the data. The email's different to my user email here though.