Valkyrie Riders Cruiser Club
July 04, 2025, 02:03:33 PM *
Welcome, Guest. Please login or register.

Login with username, password and session length
Ultimate Seats Link VRCC Store
Homepage : Photostash : JustPics : Shoptalk : Old Tech Archive : Classifieds : Contact Staff
News: If you're new to this message board, read THIS!
 
MarkT Exhaust
Valkyrie Riders Cruiser Club > General > General Board > valkyrieriders[.]com account was compromised
Pages: [1]   Go Down
« previous next »
Print
Author Topic: valkyrieriders[.]com account was compromised  (Read 775 times)
lastrogue
Member
*****
Posts: 3
« on: December 24, 2020, 11:34:51 PM »
Got a notice from a 3rd party monitoring service that my account over on valkyrieriders[.]com was compromised. more specifically in the notice it referenced members[.]vrccservices[.]com

I don't recall if this site has much ties to that one, but I had a membership registration over there.

I can't get into any portion of the site to change my credentials as it seems to be riddled with errors.

Just posting a note here to hopefully bring some attention to it so if the owner of the site is here they can take some action.

It is possible it is only my account, yet unlikely. I use a long complex unintelligible password that is vastly different on every site. So it is more likely that this is a whole site compromise. I highly recommend that if you have an account there and use the same password anywhere else, you change it now. Prioritize bank accounts, e-mail, etc.
Logged
lastrogue
Member
*****
Posts: 3
« Reply #1 on: December 24, 2020, 11:50:30 PM »
I checked a public repo for my account and it was indeed showing the same password I used on the site. I checked for other accounts there and there are many more. I have notified the site contact email registered to the site.

Hoping to get the word out to anyone else who had an account there.

Those credentials are all public now. So I seriously recommend changing your passwords.
Logged
DirtyDan
Member
*****
Posts: 3450


Kingman Arizona, from NJ
« Reply #2 on: December 25, 2020, 12:33:46 AM »
So glad I’ve got NOTHING important on the internet

Dan
Logged
Do it while you can. I did.... it my way
Timbo1
Member
*****
Posts: 277

Tulsa, Ok.
« Reply #3 on: December 25, 2020, 06:58:21 AM »
Quote from: lastrogue on December 24, 2020, 11:50:30 PM
I checked a public repo for my account and it was indeed showing the same password I used on the site. I checked for other accounts there and there are many more. I have notified the site contact email registered to the site.

Hoping to get the word out to anyone else who had an account there.

Those credentials are all public now. So I seriously recommend changing your passwords.



As a followup recommendation I notice that http://www.valkyrieforum.com does not force or redirect to a secure connection (SSL) to the profile page when updating ones account.  So if you decide to update your password or anything else please make sure you have https://www.valkyrieforum.com in your address bar else your new password or anything else may be passed in clear text instead of being encrypted.
Logged
Pages: [1]   Go Up
Print
« previous next »
Jump to:  

Theme by Crip Powered by SMF 1.1.20 | SMF © 2013, Simple Machines MySQL | PHP | XHTML | CSS