Page 1 of 1

Attempt at Spoofing?

Posted: Thu Nov 01, 2012 9:34 am
by dragon wench
I thought I should mention this in case it has happened to anyone else, I just received an email with the following:


Hello dragon wench,


You have been added as a User to GameBanshee.com by an Administrator.

This email contains your username and password to log in to http://gamebanshee.com/_dev/


Username: dragon wench
Password:


Please do not respond to this message as it is automatically generated and is for information purposes only.


When I went to the link above, I got to a page that looked very much like GB's front page, but the address is slightly different. Clearly, I did not log in there.

It's possible at this point Buck will come along and say everything is fine, and I'll feel stupid, but I tend to be very cautious with such things ;)

So just an FYI to everyone.

Posted: Thu Nov 01, 2012 12:53 pm
by Denethorn
Aye, I too received such an e-mail.

Sender reported as "GameBanshee.com marius_sandu2002@yahoo.com" with the header 'New User Details'.

Brief glance at GB Discussion and a thread ('The Forum seems to be having LOTs of problems lately.')mentions some kind of server hacking incident last month?

Posted: Thu Nov 01, 2012 12:54 pm
by TazmanianD
Yeah, I just got this email as well. What is disturbing is that the email sending knows my username (but not my password). It does sound like you've been hacked.

And wouldn't this thread be better in the tech support forum? I didn't find it right away.

Posted: Thu Nov 01, 2012 12:59 pm
by galraen
I just received one as well, it was in my spam box.

Posted: Thu Nov 01, 2012 1:13 pm
by Darth Gavinius
Yeah, I had one in my junk as well. The sender address comes up as Marius_Sandu@yahoo.com.

Posted: Thu Nov 01, 2012 1:28 pm
by Tricky
Odd. I reported it as a phishing attempt.

But it makes no sense. Someone hacked the GB database and retrieved our email, then proceeded with this pitiful phishing attempt because they 'forgot' to also retrieve the corresponding passwords? This has to be the dumbest hacker in history.

Either way, looks like my private email is finally out in the open. I will have to request a new one and copy all my existing email. Not too happy about that.

Posted: Thu Nov 01, 2012 3:04 pm
by Jon Ralen
I got the same one too, reported it as a phishing scam. I don't mind the email address being lifted, it already gets plenty of junk. Might be time for another round of password changes though.

Posted: Thu Nov 01, 2012 9:00 pm
by BuckGB
Hi guys, this doesn't appear to be any sort of hack (the thread referenced earlier is in regard to a hacker who struck the main website early last year).

UPDATE: Marius explained what happened a couple of posts down. We are in the middle of a significant upgrade on the backend, and unfortunately a test email was sent out to all users. Sorry for the inconvenience!

Posted: Fri Nov 02, 2012 1:11 am
by dracuella
Hey BuckGB, thx for the info.
I got this email this morning as well and thought it was either phishing or that something had happened to the DB and you guys needed us to revalidate our accounts. However, since it makes users uneasy, I think it would be a good idea to either remove the possibility to log in on the '_dev' page or change it completely somehow. An attempt to log in to the given URL with the credentials sent out (login/empty pwd) gives you this which, despite being anything of the sort, apparently, smells greatly of phishing/hacking/compromised site:


[SIZE=11px][SIZE=11px]Error[/size][/size]
  • [SIZE=11px]Empty password not allowed[/size]
[SIZE=11px][SIZE=11px][SIZE=11px]User Name[/size][/size][/size]
[SIZE=11px][SIZE=11px][SIZE=11px]Password[/size][/size][/size]
[SIZE=11px][SIZE=11px][SIZE=11px]Remember me[/size] [/size][/size]
[SIZE=11px]Log in[/size]
  • [SIZE=11px][url='http://www.gamebanshee.com/_dev/index.php/component/users/?view=reset']Forgot your password?[/url][/size]
  • [SIZE=11px][url='http://www.gamebanshee.com/_dev/index.php/component/users/?view=remind']Forgot your username?[/url][/size]
[font=Georgia][color=#979797]Again, thanks for all the work you guys put into GameBanshee, we really appreciate it :) [/color][/font]
-dracuella

Posted: Fri Nov 02, 2012 5:21 am
by marius_test
hello people.

i'm marius and i'm a member of the team that's taking care of GameBanshee's upgrade. my e-mail was attached to the new environment for testing purposes and during a component installation a "send mail to all users" action was triggered, so every single user of this website received an email listing me as the sender, even if the mailserver that carried this out was gamebanshee.. :)

i'm sorry for all this trouble.

there's nothing to be alarmed, there's no scam, hack, abuse, phishing, spoofing, etc.
your personal data within gamebanshee is safe.

marius sandu