Attention - Password and Security Update - Watch Freeks


Like Tree2Likes
  • 1 Post By Priapism
  • 1 Post By ganson
Reply
 
LinkBack Thread Tools
Old 06-14-2016, 10:51 AM   #1 (permalink)
Administrator
 
TheWATCHer's Avatar
 
Join Date: Aug 2009
Location: Toronto, Ontario, Canada
My Photos: View
Posts: 1,161
Default Attention - Password and Security Update

Hello all,

Over the next few days we will be implementing some changes to our forum password strength and password expiration policies. To make sure you continue having the best experience possible on the community, we regularly monitor the site and the Internet to keep everyone's account information safe. We've recently become aware of a potential risk to some accounts coming from outside of this community. Just to be safe, we are implementing the following changes to improve security even further:

1) We are asking everyone to change their passwords (and will force a one time reset). Along with every user on the forum, new passwords will need to be more complex, and can't be simple words (sorry, you can't have "fluffy" as your password anymore!). Please use a password unique to this community. Reusing passwords can expose your account indirectly when other websites (Twitter, Linkedin, Badoo, etc) are compromised; and

2) Your passwords will expire on a 365 day basis. When you login on the 366th day, you will have to change it.

We'll also be sending out an email to users to let them know about the changes, in upcoming weeks.

Thanks all,

Helena

Community Management
TheWATCHer is offline   Reply With Quote Quick reply to this message
Sponsored Links
Advertisement
 
Old 06-14-2016, 11:17 AM   #2 (permalink)
Administrator
 
TheWATCHer's Avatar
 
Join Date: Aug 2009
Location: Toronto, Ontario, Canada
My Photos: View
Posts: 1,161
Default Attention - Password and Security Update

Hello all,

Over the next few days we will be implementing some changes to our forum password strength and password expiration policies. To make sure you continue having the best experience possible on the community, we regularly monitor the site and the Internet to keep everyone's account information safe. We've recently become aware of a potential risk to some accounts coming from outside of this community. Just to be safe, we are implementing the following changes to improve security even further:

1) We are asking everyone to change their passwords (and will force a one time reset). Along with every user on the forum, new passwords will need to be more complex, and can't be simple words (sorry, you can't have "fluffy" as your password anymore!). Please use a password unique to this community. Reusing passwords can expose your account indirectly when other websites (Twitter, Linkedin, Badoo, etc) are compromised; and

2) Your passwords will expire on a 365 day basis. When you login on the 366th day, you will have to change it.

We'll also be sending out an email to users to let them know about the changes, in upcoming weeks.

Thanks all,

Helena

Community Management
TheWATCHer is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 12:20 PM   #3 (permalink)
Junior Member
 
Join Date: Nov 2014
My Photos: View
Posts: 4
Default

I'd like to know how to reset/change my password??
jimtone is offline   Reply With Quote Quick reply to this message
Sponsored Links
Advertisement
 
Old 06-27-2016, 12:29 PM   #4 (permalink)
Moderator
 
ganson's Avatar
 
Join Date: Mar 2012
Location: Washington, District Of Columbia, USA
My Photos: View
Posts: 7,444
Exclamation

Quote:
Originally Posted by jimtone View Post
I'd like to know how to reset/change my password??
Got to "USER CP", then look on the left sidebar under "SETTINGS AND OPTIONS" you should see "Edit Email and Password". Click that link and it will walk you through it.
__________________




-Garrick


"Times Magazines "Person of the Year" for 2003 and 2006."
Instagram: @Grrck
ganson is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 01:00 PM   #5 (permalink)
Administrator
 
andrema's Avatar
 
Join Date: Oct 2009
Location: USA
My Photos: View
Posts: 11,412
Default

The key to this whole thing is clicking the highlighted link:





If you just try to use the new password on the forum, it may not work (it didn't for me). You can copy and paste the new password through that link and reset to whatever you like (as long as it includes the required characters).
__________________
Not everything that can be counted counts, and not everything that counts can be counted.

Go check out the Dive Watches FBG -->> https://www.facebook.com/groups/1131038630296057/
andrema is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 02:28 PM   #6 (permalink)
Senior Member
 
GoodWatch's Avatar
 
Join Date: Jan 2013
Location: Rotterdam, The Netherlands
My Photos: View
Posts: 4,746
Default

Done it a couple of days ago. Thank you for being vigilant. There's been a string of accounts thefts lately. I was hit as well, to make a long story short, I have a new credit card.
__________________
* Benrus MIL-W-46374 re-issue | Borealis Estoril 300 DW | Borealis Sea Storm | Crepas L'océan 1200M | Deep Blue Juggernaut II | G. Gerlach Kosmonauta | G. Gerlach Navigator | G. Gerlach RWD-6 Pilot | H2O Orca Dive | Heimdallr 6105-8110 homage | Heimdallr Sea Shepherd | Heimdallr Sharkey 62MAS | Helberg CH1 | Helberg CH6 | Helberg CH8 | Helson Turtle | HMT Pilot | Marina Militare M-7040 | No-name Seventies LED watch | Seagull 1963 Pilot Chronograph | Seiko 5 7S25A | Straton Spéciale | Vostok Amphibia 1967 Diver *

* On the radar: Bulova Computron Reissue | JENNY Caribbean 300 | Squale 101 Atmos *



GoodWatch is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 02:29 PM   #7 (permalink)
Moderator
 
ganson's Avatar
 
Join Date: Mar 2012
Location: Washington, District Of Columbia, USA
My Photos: View
Posts: 7,444
Default

To be fair, good cyber vigilance dictates not clicking links found in emails.



Quote:
Originally Posted by andrema View Post
The key to this whole thing is clicking the highlighted link:





If you just try to use the new password on the forum, it may not work (it didn't for me). You can copy and paste the new password through that link and reset to whatever you like (as long as it includes the required characters).
__________________




-Garrick


"Times Magazines "Person of the Year" for 2003 and 2006."
Instagram: @Grrck
ganson is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 02:51 PM   #8 (permalink)
Senior Member
 
GoodWatch's Avatar
 
Join Date: Jan 2013
Location: Rotterdam, The Netherlands
My Photos: View
Posts: 4,746
Default

Quote:
Originally Posted by ganson View Post
To be fair, good cyber vigilance dictates not clicking links found in emails.
Agreed. There's a warning underneath the link but most people view emails, don't read them. That's where the trouble starts.
__________________
* Benrus MIL-W-46374 re-issue | Borealis Estoril 300 DW | Borealis Sea Storm | Crepas L'océan 1200M | Deep Blue Juggernaut II | G. Gerlach Kosmonauta | G. Gerlach Navigator | G. Gerlach RWD-6 Pilot | H2O Orca Dive | Heimdallr 6105-8110 homage | Heimdallr Sea Shepherd | Heimdallr Sharkey 62MAS | Helberg CH1 | Helberg CH6 | Helberg CH8 | Helson Turtle | HMT Pilot | Marina Militare M-7040 | No-name Seventies LED watch | Seagull 1963 Pilot Chronograph | Seiko 5 7S25A | Straton Spéciale | Vostok Amphibia 1967 Diver *

* On the radar: Bulova Computron Reissue | JENNY Caribbean 300 | Squale 101 Atmos *



GoodWatch is offline   Reply With Quote Quick reply to this message
Old 06-27-2016, 03:04 PM   #9 (permalink)
Moderator
 
ganson's Avatar
 
Join Date: Mar 2012
Location: Washington, District Of Columbia, USA
My Photos: View
Posts: 7,444
Default

Quote:
Originally Posted by GoodWatch View Post
Agreed. There's a warning underneath the link but most people view emails, don't read them. That's where the trouble starts.
My work email has all hyperlinks deactivated at the server, if you want to follow one you need to copy and paste it rather than just arbitrarily click on it. There was a huge incident a little while back that took our network down for weeks because of phishing and malware.
__________________




-Garrick


"Times Magazines "Person of the Year" for 2003 and 2006."
Instagram: @Grrck
ganson is offline   Reply With Quote Quick reply to this message
Old 08-16-2016, 07:08 PM   #10 (permalink)
Senior Member
 
koimaster's Avatar
 
Join Date: Aug 2010
Location: Stayton, , USA
My Photos: View
Posts: 404
Default

So where is this support forum I received an email about? This hacking is unacceptable and to tell those affected to monitor their stuff is BS. Vertical scope should be providing credit monitoring for every member compromised on each forum that was compromised.

It strikes me as being not only careless with the information entrusted to them but taking members at their forums for granted. There are ways to ensure that care is taken to protect members and I know we do it where I call home at a financial cost but worth it. You cannot trust your hosting service to protect your sites, that falls on the site owners.
__________________



May 27, 1946- October 12, 2006

“Your heart was warm and happy
With the lilt of Irish laughter
Every day and in every way
Now forever and ever after."
koimaster is offline   Reply With Quote Quick reply to this message
Old 08-16-2016, 10:43 PM   #11 (permalink)
Senior Member
 
Join Date: Feb 2016
Location: Canada
My Photos: View
Posts: 677
Default

Quote:
Originally Posted by koimaster View Post
So where is this support forum I received an email about? This hacking is unacceptable and to tell those affected to monitor their stuff is BS. Vertical scope should be providing credit monitoring for every member compromised on each forum that was compromised.

It strikes me as being not only careless with the information entrusted to them but taking members at their forums for granted. There are ways to ensure that care is taken to protect members and I know we do it where I call home at a financial cost but worth it. You cannot trust your hosting service to protect your sites, that falls on the site owners.
What were you keeping on the site? Nuclear launch codes?

Personal diligence plays a role here as well. If you're using the same username and password on a public forum as you do at your bank... well... don't do that.
forzaferrari likes this.
__________________
My wife always laughs during sex, no matter what she's reading.
Priapism is offline   Reply With Quote Quick reply to this message
Old 08-17-2016, 10:57 AM   #12 (permalink)
Moderator
 
ganson's Avatar
 
Join Date: Mar 2012
Location: Washington, District Of Columbia, USA
My Photos: View
Posts: 7,444
Exclamation

First off, there is a huge banner on the main page that leads to here:
http://www.verticalscope.com/about-u...ta-breach.html

You are in the support forum right now.

The potential information compromised is only:
Quote:
Community member usernames, email addresses, hashed passwords, community userIDS, community website, and the IP address the username originally registered with.
Why would credit monitoring even be a requirement (unless your username or password happened to be your soc. sec. #)?

As far as being careless with our information, ANY information out on the internet, no matter how well encrypted, is always at risk from bad actors. From what I know, Vertical Scope had done nothing wrong in this case, and there are plenty of sites you probably have visited that have been compromised at some point that still have gone noticed, or have not been announced to members.

Had this site been small and independently run, do you think the owners/administrators have ever found out or that you would have been notified? Doubtful.

So, what was the cost to you other than being required to reset your password to something likely more secure than what you had been using?


Quote:
Originally Posted by koimaster View Post
So where is this support forum I received an email about? This hacking is unacceptable and to tell those affected to monitor their stuff is BS. Vertical scope should be providing credit monitoring for every member compromised on each forum that was compromised.

It strikes me as being not only careless with the information entrusted to them but taking members at their forums for granted. There are ways to ensure that care is taken to protect members and I know we do it where I call home at a financial cost but worth it. You cannot trust your hosting service to protect your sites, that falls on the site owners.
forzaferrari likes this.
__________________




-Garrick


"Times Magazines "Person of the Year" for 2003 and 2006."
Instagram: @Grrck
ganson is offline   Reply With Quote Quick reply to this message
Reply

Forum Navigation

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Watch Freeks forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in


Thread Tools

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Does anyone use a password manager? soundaround My Computer Bytes: 17 08-03-2011 12:15 AM


All times are GMT -4. The time now is 11:41 PM.



Powered by vBulletin® Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.6.1
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.