[IMPORTANT] Account Security

Adamsheen

Junior Member
Joined
Dec 28, 2015
Messages
187
Reaction score
46
Website
www.seokick.net
There's been reports of a few compromised accounts lately and I keep seeing posts attributing this to an alleged bhw database hack around 2013/14

We take security seriously and have been looking into this in depth. A few patterns have emerged so please look at the checklist below to see if you could be affected. Regardless, it's a good idea to consider securing your account using the new two-step verification.

Details

We spent a lot of time trying to track down any leaks from the BHW database, both internally and externally. We've looked at the articles on other sites claiming our database was hacked or posts made by people offering our DB as a download. We also ran numerous security checks and penetration tests.

To date, we've found no evidence whatsoever that BHW account information has been leaked. Tellingly, none of the compromised accounts were moderator or admin level which you would have thought would have been a priority for anyone with username, email or password details.

However, we are aware that that lots of vbulletin forums have allegedly been breached over the last couple of years which was a prime consideration in finding a new platform and providing enhanced security with two-step verification which we strongly suggest you enable to help keep your account secure.

The two largest recent breaches have been millions of email account details from yahoo.com and mail.ru I've restored 6 compromised accounts over the last couple of months - all of the members concerned had yahoo email addresses. Breach info reported here

If any of the following apply to you, please make sure you change your password asap and set up two-step verification on your BHW account.

You've ever received emails from BHW to these accounts:
  • yahoo.com
  • mail.ru

You have the same bhw username (or security credentials or personal information) registered on any of these forums:
  • bitcointalk
  • BTC-E
  • warrior forum
  • digital point
  • wickedfire
  • bestblackhatforum

If you believe anything is missing from this list, please either PM me or report it with the details of the site you want added. PLEASE NOTE: we have not managed to verify these sites were compromised, however it's important to inform you of any potential risk.

Setting up 2 step verification:

Two-Step verification link:
http://www.blackhatworld.com/account/two-step

On this page you can manage trusted devices and set up your phone to act as a security backup on your account. Once you have set up two-step, you will see the following screen:

f4861925564385bd951075d84bb4cb43.png


Clicking "Manage" will let you view your backup codes, like this:

0f8c7825d2c8e6b38e9b41c8caeb937e.png

(don't get excited, these aren't my backup codes)

YOU MUST SAVE YOUR BACKUP CODES IN A SAFE PLACE.

Doing this will let you regain access to your account if your phone is lost or your email compromised.

We'll put more detailed instructions about setting up two-step verification in the near future. In the meantime, if you're having problems accessing your account or think it might have been compromised, please report this here: support.blackhatworld.com
My Official yahoo server email address is not working from yesterday i thought it has been compromised.
 

derekxec

Junior Member
Joined
Nov 24, 2014
Messages
109
Reaction score
51
Hopefully if they steal my account they will use it to post some useful info for everyone here, haha!
 

BHW-News

Super Moderator
Staff member
Moderator
Jr. VIP
Joined
Mar 26, 2013
Messages
15,019
Reaction score
10,735
Website
support.blackhatworld.com
I think my account has been compromised. Someone keeps writing real shit posts on my account.

Oh god, yes - I see what you mean. When did this happen because I'm having problems working out when the deterioration in post quality began?
 

Charly The Rabbit

Junior Member
Joined
Feb 17, 2016
Messages
164
Reaction score
44
I didn't know about Yaho breach, after reading on google I think, I'll active the 2-step auth

I thought was useless :p
 

BHW-News

Super Moderator
Staff member
Moderator
Jr. VIP
Joined
Mar 26, 2013
Messages
15,019
Reaction score
10,735
Website
support.blackhatworld.com

mickyfu

Banned due to many warnings
Joined
Dec 14, 2011
Messages
9,430
Reaction score
27,934
UPDATE: looks like there's been a few breaches for yahoo. http://www.bbc.co.uk/news/world-us-canada-38324527http://www.bbc.co.uk/news/world-us-canada-38324527

As a reminder, make sure you turn on your 2 step verification to keep your account secure.


https://www.blackhatworld.com/seo/important-account-security.879700/​

Isn't this relating to something that happened a couple of year ago?
 

BHW-News

Super Moderator
Staff member
Moderator
Jr. VIP
Joined
Mar 26, 2013
Messages
15,019
Reaction score
10,735
Website
support.blackhatworld.com

PGUK_RIPPER

Registered Member
Joined
Feb 27, 2017
Messages
51
Reaction score
8
Thanks for the info, im setting up the 2 step now! been on warrior forum but its nowhere near as good as BHW ;)
 
Top