HOME ARTICLES JOIN GALLERY STORE SPONSORS MARKETPLACE CONTACT US  
Register | FAQ | Search | Memberlist
Username:    Password:       Forgot your password?
BIKELAND > FORUMS > ZX12R ZONE.com > Thread: Bikeland database compromise - Details NEW TOPIC NEW POLL POST REPLY
frEEk


Administrator
ummm... yeah
Posts: 9650
posted January 16, 2015 04:16 AM        Edited By: frEEk on 16 Jan 2015 19:48
Bikeland database compromise - Details

This morning Bikeland's database was compromised in what appears to be a random attack by an unknown source which managed to steal emails and passwords. We do not know how many, but it seems likely they got through a good portion of our member list. As a result we have reset ALL user passwords. You will need to use the password retrieval tool to get your new password, after which you can change it as desired.

Because Bikeland stores no personal information (names, phone numbers etc) or financial information (ie. from people who purchased from our store), no critical info has been stolen.

However, if you use the same email address and password on other sites, we strongly suggest you change your password on those sites immediately (BOTH the same, sites that use just the same email address OR password are not at risk). When hackers steal a list of emails & passwords, they can then try logging into other popular services with those credentials. If you have a habit of using the same login elsewhere, this means you are now vulnerable to unauthorized access on those sites. So again, change your password on sites that share the same email and password.

Our apologies to our members for this rather large inconvenience. The vulnerability has been fixed but unfortunately the damage is already done.

  Ignore this member    Click here to visit frEEk's homepage. 
fish_antlers


Administrator
The Truth is Out There
Posts: 21753
posted January 16, 2015 11:24 AM        
Thanks for being on top of this freek and maddog! !
____________
What business is it of yours where I'm from, Friendo?


  Ignore this member    Click here to visit fish_antlers's homepage. 
FastestBusaAround


Needs a life
I eat Fish...
Posts: 7889
posted January 16, 2015 02:32 PM        
Should be using Apache on Linux instead of Microcrap Bang Me Out IIS
____________
FYYFF!!!

  Ignore this member    Click here to visit FastestBusaAround's homepage. 
frEEk


Administrator
ummm... yeah
Posts: 9650
posted January 16, 2015 02:41 PM        
We are.
  Ignore this member    Click here to visit frEEk's homepage. 
swft


Needs a life
Full throttle!
Posts: One MEEEEEELLION
posted January 16, 2015 09:08 PM        
I don't know anyone using IIS...last time I saw it was like 10 years ago...
____________
82 Gpz750, 84 Ninja 900, 2000 ZX12R (Muzzy Big Bore Kit), *another* 2000 ZX12R (Muzzy custom stroke crank 1341cc motor), 2004 ZZR1200, 2005 ZX10R, 2007 ZX14, 2008 Concours 14, 2014 Versys 650, 2014 Yamaha WR450F, 2015 Ninja H2


  Ignore this member   
FastestBusaAround


Needs a life
I eat Fish...
Posts: 7889
posted January 16, 2015 11:27 PM        
quote:
We are.

Ok then...carry on...
____________
FYYFF!!!

  Ignore this member    Click here to visit FastestBusaAround's homepage. 
fish_antlers


Administrator
The Truth is Out There
Posts: 21753
posted January 17, 2015 12:26 AM        
We are what?
____________
What business is it of yours where I'm from, Friendo?


  Ignore this member    Click here to visit fish_antlers's homepage. 
FastestBusaAround


Needs a life
I eat Fish...
Posts: 7889
posted January 17, 2015 01:11 AM        
You are Apache on LInux...apparently.
____________
FYYFF!!!

  Ignore this member    Click here to visit FastestBusaAround's homepage. 
fish_antlers


Administrator
The Truth is Out There
Posts: 21753
posted January 17, 2015 02:39 AM        
Oic.
____________
What business is it of yours where I'm from, Friendo?


  Ignore this member    Click here to visit fish_antlers's homepage. 
EastBayDave


Needs a job
Posts: 2242
posted January 17, 2015 03:50 AM        
That just sucks....glad you were able to get the warning out...

EBD
____________
Enjoy the ride!
02' ZRX1200
00' ZX12R sold

  Ignore this member   
swft


Needs a life
Full throttle!
Posts: One MEEEEEELLION
posted January 17, 2015 04:49 AM        
Fish is an Apache?
____________
82 Gpz750, 84 Ninja 900, 2000 ZX12R (Muzzy Big Bore Kit), *another* 2000 ZX12R (Muzzy custom stroke crank 1341cc motor), 2004 ZZR1200, 2005 ZX10R, 2007 ZX14, 2008 Concours 14, 2014 Versys 650, 2014 Yamaha WR450F, 2015 Ninja H2


  Ignore this member   
FastestBusaAround


Needs a life
I eat Fish...
Posts: 7889
posted January 17, 2015 01:59 PM        
Nahhh..he's a bait and troll.
____________
FYYFF!!!

  Ignore this member    Click here to visit FastestBusaAround's homepage. 
fastzx


Parking Attendant
Posts: 10
posted January 21, 2015 05:20 PM        
FISH!!!!..... MY other screen name is associated with same email addy as this screen name, I can't get a password for my other screen name..... Hhhhheeeeeeellpp

____________
I'm FAST!!

  Ignore this member   
fish_antlers


Administrator
The Truth is Out There
Posts: 21753
posted January 22, 2015 04:56 AM        
send freek an email via a contact form
____________
What business is it of yours where I'm from, Friendo?


  Ignore this member    Click here to visit fish_antlers's homepage. 
urftup


Parking Attendant
Posts: 10
posted February 02, 2015 07:15 PM        Edited By: urftup on 3 Feb 2015 10:20
I was sent a username and password reset, but how do i get my old username restored? Ive been here since 2000, but been away and just found out about the hack....and i have one meeeeeelion posts!!!!
  Ignore this member   
fish_antlers


Administrator
The Truth is Out There
Posts: 21753
posted February 02, 2015 11:57 PM        
No one "lost" their username. Drop use an email and freek will get you fixed up.
____________
What business is it of yours where I'm from, Friendo?


  Ignore this member    Click here to visit fish_antlers's homepage. 
frEEk


Administrator
ummm... yeah
Posts: 9650
posted February 03, 2015 03:52 PM        
Only the password is reset. Username is unchanged. Just use the "Forgot password" link to have your new password emailed to you.
  Ignore this member    Click here to visit frEEk's homepage. 
rgeorge


Expert Class
Posts: 220
posted February 12, 2015 01:32 AM        
I am assuming the passwords were in plain text, not hashed. Are you going to change to a hashed password database?
  Ignore this member   
frEEk


Administrator
ummm... yeah
Posts: 9650
posted February 12, 2015 06:38 AM        
Exactly, 15 year old software means hashed passwords weren't exactly a thing yet. We do have a software update on the horizon which would include modern password protection.
  Ignore this member    Click here to visit frEEk's homepage. 
TurboBlew


Moderator
BUSY DOING THE SCHIAVO
Posts: 4580
posted June 22, 2015 05:13 AM        
Can you read my private messages?
____________
Official Charter Member of the RIDERS OF KAWASAKI MEMBERSHIP REVOCATION CLUB

  Ignore this member   
frEEk


Administrator
ummm... yeah
Posts: 9650
posted June 24, 2015 05:12 AM        
Only yours.
  Ignore this member    Click here to visit frEEk's homepage. 
EastBayDave


Needs a job
Posts: 2242
posted July 07, 2015 10:12 AM        
The ZRXOA was hit last week; luckily all the data was backed up. They went back online today,...
____________
Enjoy the ride!
02' ZRX1200
00' ZX12R sold

  Ignore this member   
All times are America/Va < Previous Thread     Next Thread >
Quick Reply:

Email Notification: Send all replies to your email address.
BIKELAND > FORUMS > ZX12R ZONE.com > Thread: Bikeland database compromise - Details NEW TOPIC NEW POLL POST REPLY

FEATURED NEWS   Bikeland News RSS Feed

HEADLINES   Bikeland News RSS Feed


Copyright 2000-2015 Bikeland Media
Please refer to our terms of service for further information
0.43187689781189 seconds processing time