you do not know that... and neither do i.. according to the masspm sent, he/she was not interested in the users.. that does not say anything about how passwords where stored...Quote:
Originally Posted by AugustoP
never assume what u cant prove
Printable View
you do not know that... and neither do i.. according to the masspm sent, he/she was not interested in the users.. that does not say anything about how passwords where stored...Quote:
Originally Posted by AugustoP
never assume what u cant prove
I trust HDBits staff, although i trusted BitHDTV staff as well and they failed miserably. So maybe someone has lost accounts back then.Quote:
Originally Posted by Jaitsyou do not know that... and neither do i...Quote:
Originally Posted by AugustoP
never assume what u cant prove
this was in ScT and other trackers too? i don't understand why i see this: your username or password is incorect... in almost all trackers which i use..
u were on the list that published .... your account were hackedQuote:
Originally Posted by KevinGarnet
whats your username....?
i recover my pass and now i have another pass.. but so i should change pass in all trackers which i use? All trackers were hacked? i use a lot of trackers and i don't want to lose them...
I guess you used the same username/password for all your accounts :cry:Quote:
Originally Posted by KevinGarnet
Try the password recovery
of course i will try.. in ScT i use another username but the same pass... but i also got this what i said that username or pass is incorect.. i don't understand at all what happened..
Maybe someone bruteforced the site using sct's userlist and passwords of bithdtv membersQuote:
Originally Posted by KevinGarnet
This way even if you don't use the same username your account may be stolen
thnx for help.. my acc in ScT isn't stolen.. and i really hope that in all tracker which i use accs will not be stolen.. :(
change the password, BTW i found accidentally the list :)
If you used the same username and password on every account then they were more likely hijacked. Try to recover your password asap and hope no1 changed the email address on the accountQuote:
Originally Posted by KevinGarnet
:O
I havent logged to this site from last year i want to check it out if my username & password appear in the list can someone PM me the list pls
I think that there is a very issue for all trackers now.
A lot of people are on vacation and they probably have no clue that their accounts were stolen...
I am surprised why most of the trackers don't send a confirmation email to the old account when you try to change your registered email...
This is something that all the trackers should take into consideration DV8type.
Some have already disabled the option of email change.
I completely agree w/ you. We have had a hold on email changes for a while.Quote:
Originally Posted by znik
Unfortunately, some new trackers start up with the express intention of stealing usernames/passwords from unsuspecting users. Its funny, when ever there is a “New Tracker” thread in the invite section (warezbroz, etc.) people are greedy and jump in without much thought to the consequences. As you see not every tracker has good intentions. You never know, the next tracker you sign up on might even be set up by MP@@ or RI@@. There have also been many spoof websites popping up aswell.....
:cry::cry:
:blink::wacko:
People do lose email accounts, therefore some way to change email is needed. Examination by a staff member, IP address check script etc.Quote:
Originally Posted by DV8type
I think that all the trackers should warn their users to change their passwds in case they were also BitHDTV members and use the same passwds on all sites.
I haven't seen a friendly reminder on any tracker so far!
Not even on BitHDTV, where they should have made an announcement of the risks they have put their member in...
Not even a single apology! Just a "Passwords were reset."...
A lot of people may believe that they are secure know or nothing really happened!
Can someone pls PM me the list to check if my username appear there, before i use the same password in one of my main email i used also in hdtv-bits.
the whole BitHDTV userbase was hacked Ac3Dunk.
-Never use the same passwd on your various trackers
-Never use the same passwd on your registered email with your tracker's passwd.
-Always use a strong passwd with every possible combination like that: 225#Vv#&(*.&*#?>>?24+_})!#*_%GJL[KG.Dd^^
-Store your passwds in a passwd protected file in a USB stick and use it only when you need it. Don't store it in your hard disk!
-Change your passwds periodically.
So, change your passwds ASAP!
What if you loose the password to your passwords?Quote:
Originally Posted by znik
In that case it wouldn't have mattered whether he had "123456" or "225#Vv#&(*.&*#?>>?24+_})!#*_%GJL[KG.Dd^^" as passwordQuote:
Originally Posted by znik
I agree with the two first points, but then it's for the paranoid :P
Even a 8-10 letters pass will do, as long as it's not a common word...
I lost my email account once, but then i found it under the couch!:PQuote:
Originally Posted by AugustoPPeople do lose email accounts, therefore some way to change email is needed. Examination by a staff member, IP address check script etc.Quote:
Originally Posted by DV8type
The best is have one email address with all account details and good password. My advice is: Use for every account /recovery.php script and you will have everywhere unique password and will have stored the passwords in your mail...
does anyone know if the issue has been resolved? or will the new batch of accs and recently-changed pws be available again unencrypted? If so, I don't want to waste my time with this tracker...:dry:
because of their stupidity, I have now lost my sct and finbytes account :(
the mail was stolen aswell :(!!!!!
^Shit mate I feel really sorry for you. Hopefully someone will help you, whoever can.
but what can i do??
can't log on to irc to talk to stff either :(
STOP REQUESTING THE.txt FILE!!!!
DO NOT PM ME ANYMORE!!!!
bit-hdtv is dead to me...
Bfietta how did they take your mail as well?
Have you been using the same username and passwd for all your trackers AND email? :fear2::w00t::blink:
How could they also know your 3pin finbytes code?
be fair to yourself. if you used the same passwords on those accounts then it serves you right.Quote:
Originally Posted by Bfietta
j0hn13 = mforcex?Quote:
Originally Posted by j0hn13be fair to yourself. if you used the same passwords on those accounts then it serves you right.Quote:
Originally Posted by Bfietta
hmmmmm??
you should NEVER use the password for your email on torrent sites, that is just plain stupid. I have several different and strong passwords for my main email,paypal etc etc
You shouldn't have put it in the first place :rolleyes:Quote:
Originally Posted by terrorize
You can always list the nicks of those who asked you for that file, most of them are probably account stealer wannabees :P
(seriously you could do that)
I think he just reacted on the "because of their stupidity"Quote:
Originally Posted by hangemhighj0hn13 = mforcex?Quote:
Originally Posted by j0hn13
hmmmmm??
Yes, I just reacted to "because of their stupidity" and I'm not j0hn13 = mforcex. My username and password was on that list, but I don't care. I use unique password for every site and not like somebody I do not complain. Shit happens. Also I've seen people who complained that they lost their accounts or ratio because of this. But they joined the site after the leak.Quote:
Originally Posted by Vercors
I think he just reacted on the "because of their stupidity"Quote:
Originally Posted by hangemhighj0hn13 = mforcex?Quote:
Originally Posted by j0hn13
hmmmmm??
i question the comprehensiveness of the list. i joined before the leak, however my acc name wasn't on the list :huh:
This list was after all a custom log file and no user-database, at least that's how the picture was painted in the internal BiT-HDTV forums. It's possible that your login data didn't make it into the log for some reason.Quote:
Originally Posted by low_dirt
The "issue" was resolved several months ago, the list is several months old. If people aren't in the list, it's probably because they joined less than 2-3 months ago.Quote:
Originally Posted by low_dirt
According to the site staff, it's not known whether the code to log the passwords was put there by an ex-staff member or by a hacker. Either way, it was added nearly a year ago.
And for all of yous wondering/complaining why the site doesn't use the standard MD5 hashes in TBSource or store passwords as hashes, it does. This list was generated by malicious code logging everything entered on the login page.
Should I delete my BitHDTV account?
No, I joined less than a month ago and I am on the list. The list was still being added to up until july 27th. The list was formed basically by snooping EVERYTIME someone logged in, and writing their login info to a txt file before it was encrypted. There are several logins from the same people on the list which is evidence of this. Also, the list needs to be made REAL public, so that people know to change their shit.
Agreed... I'm a member and I want to know if my shit got out there... :(Quote:
Originally Posted by muyoso