Leeched password/security breach?
  • Yokemate of Keyboards
    Yokemate of Keyboards
    takemehomegrandma
    Posts: 2698 from 2003/2/24
    I just logged in to Morph.zone using Chrome and Win10, and I got a notification that Chrome had detected that my password for this site had been leeched during a security breach and that Chrome recommended me to change the password. Which I now have done.

    The first time I have ever seen that, on any site, using any browser, on any computer.

    Has MZ been compromised, or is it my local computer? Or is it nothing or something else?
    MorphOS is Amiga done right! :-)
    MorphOS NG will be AROS done right! :-)
  • »09.07.21 - 17:54
    Profile
  • Yokemate of Keyboards
    Yokemate of Keyboards
    takemehomegrandma
    Posts: 2698 from 2003/2/24
    Quote:

    takemehomegrandma wrote:
    I just logged in to Morph.zone using Chrome and Win10, and I got a notification that Chrome had detected that my password for this site had been leeched during a security breach and that Chrome recommended me to change the password. Which I now have done.

    The first time I have ever seen that, on any site, using any browser, on any computer.

    Has MZ been compromised, or is it my local computer? Or is it nothing or something else?


    Hmm, this stuff maybe isn't all that new, but it was news to me. But I found some info about it here: https://support.google.com/chrome/thread/23534509/i-am-getting-a-popup-message-saying-that-a-data-breach-on-a-site-or-app-exposed-your-password?hl=en

    Password must have been harvested to a google account of mine at some point, without me remembering.

    It's the only combo of this particular username/password though...
    MorphOS is Amiga done right! :-)
    MorphOS NG will be AROS done right! :-)
  • »09.07.21 - 18:47
    Profile
  • ASiegel
    Posts: 1296 from 2003/2/15
    From: Central Europe
    Amigaworld.net was hacked a few years back. Many people shared passwords between this website and MorphZone.

    There are various websites that enable you to check if your email address was exposed via any major leaks. Your h**m*** address was apparently leaked as part of an intrusion of adobe.com, for instance.
  • »09.07.21 - 21:03
    Profile
  • Yokemate of Keyboards
    Yokemate of Keyboards
    takemehomegrandma
    Posts: 2698 from 2003/2/24
    @ASiegel

    Thank you for your advice. Much appreciated. I actually hoped you would reply! ;-)

    Come to think about it, I *actually did* share passwords between these two sites (those two only!). I forgot that! How long ago was it that Amiga.org was hacked? Because I was banned from there by eliathu(?) many years ago, when he didn't approve me posting like 10 listings of signs (with links to verify) of obvious problems growing behind the Hyperion facade. But at the time of being banned, I changed my password there to a completely random sequence by me bashing the keyboard a couple of times, just to make sure I would *never* try to go to that corrupt website again. Was the old PW kept in the DB there you think? Makes you wonder whether the new EU regulations make it possible to *completely* erase your history on a website?

    I also remember you giving me notice about that adobe hack a long time ago. I acted immediately on that. Thank you for that as well.

    You guys (the MorphOS Team) are the best! Each of you the peak of your various positions, obviously! Thank you all for everything! :-)

    [ Edited by takemehomegrandma 09.07.2021 - 22:49 ]
    MorphOS is Amiga done right! :-)
    MorphOS NG will be AROS done right! :-)
  • »09.07.21 - 21:40
    Profile
  • Yokemate of Keyboards
    Yokemate of Keyboards
    takemehomegrandma
    Posts: 2698 from 2003/2/24
    Well, since this came up now, does this mean the amiga.org has been compromised again, I wonder...? If so, yet another reason to get yourself deleted completely from their database!
    MorphOS is Amiga done right! :-)
    MorphOS NG will be AROS done right! :-)
  • »09.07.21 - 21:53
    Profile
  • Yokemate of Keyboards
    Yokemate of Keyboards
    Andreas_Wolf
    Posts: 11445 from 2003/5/22
    From: Germany
    >> Amigaworld.net was hacked a few years back.

    > I *actually did* share passwords between these two sites (those two only!).
    > I forgot that! How long ago was it that Amiga.org was hacked?

    Not sure about amiga.org, but there were several incidents involving amigaworld.net over the years.

    > eliathu(?)

    eliyahu :-)
  • »09.07.21 - 23:11
    Profile
  • MorphOS Developer
    Piru
    Posts: 504 from 2003/2/24
    From: finland, the l...
    Use https://haveibeenpwned.com/ to check where your information might have leaked.
  • »09.07.21 - 23:12
    Profile