Page 4 of 7 FirstFirst 1234567 LastLast
Results 76 to 100 of 153

Thread: IGNORE Any Posts Or Emails Titled : Critical Security Vulnerability

  1. #76
    I haven't gotten an email from admins, though I did get the hacker email. Log- ins are generating a security warning. I don't know if I should change my password until I'm sure there's no threat. Should I decide to delete my account here, I don't see any option to do so. Is there one?

    I don't take having my email address stolen lightly. That could cause a lot of trouble.

  2. #77
    Moderator Duncan Glenday's Avatar
    Join Date
    Apr 2003
    Location
    Frederick, MD
    Posts
    770
    There is no option to delete your account. An admin needs to do that.

    There is no immediate threat. Your email was not seen by the hacker. He simply activated an option in the system - and the system automatically sent messages to the email addresses in the database.
    Regards,

    Duncan

  3. #78
    Ok, that's a relief re:the email. Is it safe to change passwords? I don't want to delete my account. I just wanted to know the options, so thanks for the answer.

  4. #79
    Moderator Sean's Avatar
    Join Date
    Jun 2001
    Location
    Georgia
    Posts
    1,573
    Duncan, remind everyone what they need to click to get to the part where they reset the password.

  5. #80
    Moderator Duncan Glenday's Avatar
    Join Date
    Apr 2003
    Location
    Frederick, MD
    Posts
    770
    Quote Originally Posted by Mike D View Post
    Ok, that's a relief re:the email. Is it safe to change passwords? I don't want to delete my account. I just wanted to know the options, so thanks for the answer.
    PERFECTLY safe (and strongly recommended) to change your password.

    Click "Settings" toward the top right-hand corner of your screen.

    A menu of options will appear down the left-hand side of your screen. Scroll down to "Edit Email & Password"...
    Regards,

    Duncan

  6. #81
    Quote Originally Posted by Duncan Glenday View Post
    PERFECTLY safe (and strongly recommended) to change your password.

    Click "Settings" toward the top right-hand corner of your screen.

    A menu of options will appear down the left-hand side of your screen. Scroll down to "Edit Email & Password"...
    Thanks again.

  7. #82
    Moderator Poisoned Youth's Avatar
    Join Date
    Feb 2002
    Location
    Nothern Virginia, USA
    Posts
    1,967
    FYI I sent a test email this morning and it took about 10 hours to reach my inbox, so it's possible the mass email will come later tonight.
    WANTED: Sig-worthy quote.

  8. #83
    Member
    Join Date
    Nov 2012
    Location
    La Florida
    Posts
    4,099
    I got the email. Then I decided to change my email address. So I get and email from PE in my new email address to follow the link to complete the process, and my phone starts spazzing out about a virus. . I do all my browsing and posting on my phone using the PE mobile version (not tapatalk. Can't stand tapatalk). Anyway all is well now, I think.

  9. #84
    ALL ACCESS Gruno's Avatar
    Join Date
    Jan 2006
    Location
    Dio, Alabama
    Posts
    1,779
    Just got the email from Duncan!

  10. #85
    Boo! walt's Avatar
    Join Date
    Nov 2012
    Location
    Oakland Gardens NY
    Posts
    4,442
    Me too.
    "please do not understand me too quickly"-andre gide

  11. #86
    Quote Originally Posted by Duncan Glenday View Post
    Has anyone else seen it? I sent it a few hours ago.

    (I'll be honest, though, I've never used the mass email feature before - so I may not have done it correctly )
    I just got it at 5:20 EST.
    Orange is the new stupid.

  12. #87
    'aang 'hoot' Don Arnold's Avatar
    Join Date
    Nov 2012
    Location
    Victoria, BC
    Posts
    111
    The grammar was definitely a big clue that the email was a spam. Also, the email didn't end with.....



    Regards,

    Duncan




    Regards,
    Don

  13. #88
    Jefferson James
    Guest
    I live in the mountains so things take longer up here, but a guy on mule-back just delivered Duncan's message to my inbox. The frenzy I'd worked myself into this morning over all this madness has now receded into placid, pellucid waters.

  14. #89
    That's Mr. to you, Sir!! Trane's Avatar
    Join Date
    Mar 2004
    Location
    in a cosmic jazzy-groove around Brussels
    Posts
    3,740
    Quote Originally Posted by moecurlythanu View Post
    I haven't looked at Snake Oil Audio this week, but last time I looked in, the Liliputians had tied him to the ground and were lobbing bricks at him. He labeled them all "pigs," and Wally was on his side, but the cretins were ganging up on him.
    Sounds like the other two posters are Beavis and Butthead

    Quote Originally Posted by moecurlythanu View Post
    Wallace doesn't have 1/10 of the computer know-how to pull off a hack and a mass mailing.
    my thought too

    Quote Originally Posted by Plasmatopia View Post
    Firefox has recently been warning me that the PE login is not secure.
    Along with most forums sites I use... FF has warned me about this for years...

    Quote Originally Posted by Mister Triscuits View Post
    Boy, that Geoff Downes just won't let it go, will he?
    My money is on Dale Hauskins of the self-appointed best Swiss prog band (Flame Dream)

    Quote Originally Posted by moecurlythanu View Post
    Svetty has responded by trying to YouTube bomb them back to the Stone Age.

    It's mildly entertaining, but in the end, you feel like you just watched a group of handicapped kids throwing down a brawl.
    I wish I had too much time on my hand to witness this

    NOT

    Quote Originally Posted by moecurlythanu View Post
    You wouldn't believe it. It's supposed to be Wallace's Prog-Rock forum, right? Three of the regulars post constantly about how much Prog sucks. One guy who doesn't understand what a genre is argues that anything after 1973 can't be considered Prog-Rock. Not much talk of mods. Those people largely appear to understand that they are rightly forum pariahs, if I read the vibe right.
    There's a tiny bit of music discussion, but not much. A lot of posting of silly and/or dirty emoticons. It's like EMR performance art, mostly.
    So Beavis, Butthead, Svet & Wally... what a crowd

    Quote Originally Posted by walt View Post
    Me too.
    Got mine too.
    my music collection increased tenfolds when I switched from drug-addicts to complete nutcases.

  15. #90
    Member wideopenears's Avatar
    Join Date
    Nov 2012
    Location
    SF Bay Area
    Posts
    459
    Mine arrived as well, Duncan. Thanks!
    "And this is the chorus.....or perhaps it's a bridge...."

  16. #91
    Occipital Provocatee Plasmatopia's Avatar
    Join Date
    Nov 2012
    Location
    Plague Sanctuary, Vermont
    Posts
    1,435
    Quote Originally Posted by Trane View Post
    Along with most forums sites I use... FF has warned me about this for years...
    It only started happening to me with a recent Firefox update (say in the last 2-3 weeks), although I only use FF once in a while on my wife's computer. I wasn't really worried about it, just wondered if it was all related somehow.
    Just sitting at home rocking back and forth and jealously caressing my invisible collection of theoretical assets.

  17. #92
    Member
    Join Date
    Nov 2012
    Location
    La Florida
    Posts
    4,099
    Quote Originally Posted by KerryKompost View Post
    I live in the mountains so things take longer up here, but a guy on mule-back just delivered Duncan's message to my inbox. The frenzy I'd worked myself into this morning over all this madness has now receded into placid, pellucid waters.
    Ba ha ha.....

  18. #93
    Quote Originally Posted by JJ88 View Post
    This. Type in 'Progressive Ears' on Google and it actually says 'This site may be hacked'. It is redirecting to something called 'My File Store' if you access the site via Google (which I usually don't anyway)...this was flagged up in the forum long ago and yet nothing changed, it's still doing it now. Worrying.
    The MyFileStore redirect hack is a known vulnerability of vBulletin and if its present it opens up other attack vectors. I suspect it facilitated this attack.

  19. #94
    Member
    Join Date
    Nov 2012
    Location
    Florida (temporarily)
    Posts
    50
    Yeah, I got mine too. Like everybody else, I came here before downloading anything. I wonder how many people who downloaded the virus would actually come back here and admit it.

  20. #95
    Member
    Join Date
    Nov 2012
    Location
    Portland, OR, USA
    Posts
    1,491
    Quote Originally Posted by battema View Post
    Honestly, the first thing I thought of was Wallace.
    I knew right away it wasn't.

    If it had been, it would have said something like,

    ARRRR, ye lubbers, there be recently a security vulnerability we found in your software. All ye that visited within 24 months have been overhauled by the good ship Snake Oil Audio. We have fired our doughty HTML injections and have put a virus crashing right into the fo'c'sl of you PC.....

  21. #96
    Quote Originally Posted by Plasmatopia View Post
    It only started happening to me with a recent Firefox update (say in the last 2-3 weeks), although I only use FF once in a while on my wife's computer. I wasn't really worried about it, just wondered if it was all related somehow.
    it's the login form. using one on an insecure page (http) is a known security risk. anyone doing this is vulnerable to an attacker sniffing the network for username/password pairs. many people still choose to use the same pair at multiple sites including their financial institution. the form can also be modified while in transit to give someone more privileges while on site. even a low level hacker can accomplish this. people need to get educated on internet security and wise up. it's no game
    i.ain't.dead.irock

  22. #97
    Member moecurlythanu's Avatar
    Join Date
    Nov 2012
    Location
    The Planet Lovetron
    Posts
    6,620
    Quote Originally Posted by Trane View Post
    I wish I had too much time on my hand to witness this

    NOT
    It's a pretty low traffic site. Not much time involved, trust me.
    "If you want to see the true nature of humanity, just look at the internet."

    http://www.discogs.com/user/moecurlythanu/collection

  23. #98
    Member Since: 3/27/2002 MYSTERIOUS TRAVELLER's Avatar
    Join Date
    Nov 2012
    Location
    The Kingdom of YHVH
    Posts
    2,507
    We are very sorry for the inconvenience but we will be happy to see it that you will come back to ProgressiveEars

    Why is it whenever someone mentions an artist that was clearly progressive (yet not the Symph weenie definition of Prog) do certain people feel compelled to snort "thats not Prog" like a whiny 5th grader?

  24. #99
    Quote Originally Posted by WHORG View Post
    Silly me - thinking there was the possibility of porn involved - clicked on the links.
    just go to xhamster. they've been seriously flooded with user generated content for months on end now.
    i.ain't.dead.irock

  25. #100
    Click on this extremely fishy Sendspace link? I think not!

    Quote Originally Posted by Scrotum Scissor View Post
    Like, sorta, "Svet's recommendations of progressive rock sites (pick only one!)"?
    Great minds think alike. A pathetic attempt by Svetonio at bashing PE after being banned was my first thought.
    Confirmed Bachelors: the dramedy hit of 1883...

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •