Active Low-Carber Forums
Atkins diet and low carb discussion provided free for information only, not as medical advice.
Home Plans Tips Recipes Tools Stories Studies Products
Active Low-Carber Forums
A sugar-free zone


Welcome to the Active Low-Carber Forums.
Support for Atkins diet, Protein Power, Neanderthin (Paleo Diet), CAD/CALP, Dr. Bernstein Diabetes Solution and any other healthy low-carb diet or plan, all are welcome in our lowcarb community. Forget starvation and fad diets -- join the healthy eating crowd! You may register by clicking here, it's free!

Go Back   Active Low-Carber Forums > Our Website > Comments Box and Technical Questions
User Name
Password
Register FAQ Members Calendar Mark Forums Read Search Gallery My P.L.A.N. Survey


Reply
 
Thread Tools Display Modes
  #16   ^
Old Wed, Jul-10-19, 08:14
thud123's Avatar
thud123 thud123 is offline
Senior Member
Posts: 5,156
 
Plan: ~25NC/IF
Stats: 342.2/207/000 Male 182cm
BF:
Progress: 40%
Default

Quote:
Originally Posted by doreen T
Thank you Mr. Thud

For the record, our Webmaster (tamarian) has made some changes very recently to greatly reduced search engine activity on our forum.

Yeah, that's kind of how they do it. The basically scour site like a search engine (crawls all links from forever) grabs all the usernames that can be grabbed from the pages (need a little knowhow to write that script) then plugs those usernames into brute force app that tries each username as many times as it can till time out.

The smart ones then keep a list per user of common passwords that have already been tried for a particular user so they 're not covering the same ground twice.

A better, and more sophisticated, method for getting email/password combos is to actually hack the site where this info is stored, most of it in clear text but a lot of times the passwords on not strongly encrypted or poor ones can be reversed by using rainbow tables https://en.wikipedia.org/wiki/Rainbow_table

I've even had my special emails that I create for sites show up as emails back to me saying they have my password for the site, They do have it but it's basically useless for anything but that particular site. This method is very good for creating "skareware" as I call it - sending you an email usually from your own address saying that they have hacked you and have been watching you surf the internet and then demanding bitcoin payment for not spreading the news of your lurid browsing habits. It's a really effective social engineering piece. NEVER PAY RANSOM WARE. this will only be the tip of the iceberg if you do.

here's a good site to see if you email has been compromised on various websites - if yours shows up, don't worry too much but be aware that some script someone might have your email address and password combo that you used on the site you signed up for.

https://haveibeenpwned.com/

Also some pertty good steps to help protect keep you safer signing up for stuff, and stuff...

This alone makes it a good idea to change your master/safe/important passwords periodically - sucks but that's the way it is for now till we get past the need for password - this exists but not the norm for now

Be safe, don't trust strangers on the internets. I'm one of them
Reply With Quote
Sponsored Links
  #17   ^
Old Wed, Jul-10-19, 16:50
barb712's Avatar
barb712 barb712 is offline
Senior Member
Posts: 1,122
 
Plan: Atkins
Stats: 240/201/205 Female 180
BF:
Progress: 111%
Default

Thank you, Bob-o and Thud and everyone. Good info and advice. The whole matter disgusts me, but we can only do what we can do.

Last edited by barb712 : Wed, Jul-10-19 at 17:04.
Reply With Quote
  #18   ^
Old Thu, Jul-11-19, 07:03
Bob-a-rama's Avatar
Bob-a-rama Bob-a-rama is offline
Senior Member
Posts: 1,206
 
Plan: Keto (Atkins Induction)
Stats: 230/179/185 Male 5' 11"
BF:
Progress: 113%
Location: Florida
Default

There are plenty of password managers, some of them free, that help you store your passwords. You can copy and paste and don't have to remember dozens or more passwords.

Also, do not let your browser store and fill in passwords. Browsers can be hacked.

Bob
Reply With Quote
  #19   ^
Old Thu, Jul-11-19, 07:17
Bob-a-rama's Avatar
Bob-a-rama Bob-a-rama is offline
Senior Member
Posts: 1,206
 
Plan: Keto (Atkins Induction)
Stats: 230/179/185 Male 5' 11"
BF:
Progress: 113%
Location: Florida
Default

Quote:
Originally Posted by thud123
<...snip...>This method is very good for creating "skareware" as I call it - sending you an email usually from your own address saying that they have hacked you and have been watching you surf the internet and then demanding bitcoin payment for not spreading the news of your lurid browsing habits. <...>


A couple of months ago I got one of those e-mails telling me they filmed me via my computer's camera having fun while I surfed porn, and demanded bitcoins (I don't even have a camera on my computer - it's old and I didn't go for that option).

The password they used was one I used many years ago on a forum that I closed my account on years ago. I supposed they hacked that site.

Anyway, they obviously sold me address and expired password to others because at it's peak I was getting 10 or 15 per day.

I just ignored and deleted.

I keep good AV and Malware apps on my computer, keep them updated, use strong passwords, and am careful with my surfing habits. That doesn't guarantee I'll never get hacked, but it lowers the odds greatly. The hackers would rather go for low hanging fruit. If they are going to spend a lot of work hacking, they will usually go for something more rewarding than what I have to steal.

The most commonly used and easily hacked passwords of 2018 according to one source (avoid these or anything easy)
123456
password
123456789
12345678
12345
111111
1234567
sunshine
qwerty
iloveyou
princess
admin
welcome
666666
abc123
football
123123
monkey
654321
!~#$%^&*
charlie
aa123456
donald
password1
qwerty123
Anybody using passwords like these is living dangerously.

Bob
Reply With Quote
  #20   ^
Old Thu, Jul-11-19, 10:55
doreen T's Avatar
doreen T doreen T is offline
Forum Founder
Posts: 35,914
 
Plan: DANDR '92
Stats: 241/172/140 Female 165 cm
BF:
Progress: 68%
Location: Eastern ON, Canada
Default

Great tips, Bob. Thank you
Reply With Quote
  #21   ^
Old Sun, Jul-21-19, 21:07
Momma Bear's Avatar
Momma Bear Momma Bear is offline
Senior Member
Posts: 1,239
 
Plan: Atkins
Stats: 198.5/168/140 Female 60"
BF:
Progress: 52%
Location: Vancouver Island
Default

I haven't logged in since Friday and I probably messed up my password tonight , but I only had the one attempt and was informed to wait 15 minutes before trying again. I was able to log in once I waited but I was wondering why I had the message. Now I understand. I will be changing my password.
Reply With Quote
  #22   ^
Old Mon, Jul-22-19, 07:25
ElaineinVA's Avatar
ElaineinVA ElaineinVA is offline
New Member
Posts: 7
 
Plan: Atkins
Stats: 178/116/128 Female 61 in
BF:
Progress: 124%
Default

I have changed my password on this site and on my home network. Didn't do any good.
Getting the log in error more than ever. This is the only site that I have had this problem.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off



All times are GMT -6. The time now is 22:36.


Copyright © 2000-2019 Active Low-Carber Forums @ forum.lowcarber.org
Powered by: vBulletin, Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.