Attention - Password and Security Update - Page 2 - VW Forum - VZi, Europe's largest VW, community and sales
 
Machine 7, high quality air-cooled  restoration and performance parts

     
 

Go Back   VW Forum - VZi, Europe's largest VW, community and sales > Community > Volkszone Technical Difficulties

Volkszone Technical Difficulties Any issues and concerns with the Volkszone website, please post them here.

Machine 7, high quality air-cooled  restoration and performance parts
Reply Post New Thread
 
Thread Tools Rate Thread Display Modes
Old 15-06-2016, 08:17 PM   #11
HelenaAG
VZ Editor

 
HelenaAG's Avatar

Trading feedback: (0)
 
Join Date: May 2012
Posts: 692
Garage
Default

Quote:
Originally Posted by Nige G View Post
Did you actually mean to type "Reusing passwords can expose your other accounts because we used piss poor security and we were compromised"?

Why has this taken so long to be exposed? You were hacked in February FFS!!
Again - the third party vendor/plugin that was hacked is the one exploiting passwords.

Users need to make sure they are not using the same passwords across various sites for social media, e-commerce, banking etc..

The data is from Feb and we just found out within the last 72 hours or so.

Not trying to sugar coat anything, just trying to give you all a heads up and warm you to update passwords.

Jeff M
HelenaAG is offline   Reply With Quote
Old 15-06-2016, 08:17 PM   #12
Sam Jelfs
Help! I'm trapped in here
 
Sam Jelfs's Avatar

Trading feedback: (2)
 
Join Date: Dec 2001
Location: Valkenswaard, NL
Posts: 14,072
Default

Quote:
Originally Posted by HelenaAG View Post
The additional security measures have already been put in and the email will go out soon.

Updating a network as large as ours, notifications, testing, and developing fail safes do take some time but should be ready within the next 24-48 hours.

Jeff M
You had time to update multiple forums with a bluff piece about updating security, but not too say "we believe we may have been hacked, please change passwords asap"?
Sam Jelfs is offline   Reply With Quote
Old 15-06-2016, 08:19 PM   #13
Sam Jelfs
Help! I'm trapped in here
 
Sam Jelfs's Avatar

Trading feedback: (2)
 
Join Date: Dec 2001
Location: Valkenswaard, NL
Posts: 14,072
Default

Quote:
Originally Posted by HelenaAG View Post
Again - the third party vendor/plugin that was hacked is the one exploiting passwords.

Users need to make sure they are not using the same passwords across various sites for social media, e-commerce, banking etc..

The data is from Feb and we just found out within the last 72 hours or so.

Not trying to sugar coat anything, just trying to give you all a heads up and warm you to update passwords.

Jeff M
Now you are, but not in the first post on this thread, only when you have been called out for lying.
Sam Jelfs is offline   Reply With Quote
 
Old 15-06-2016, 08:20 PM   #14
HelenaAG
VZ Editor

 
HelenaAG's Avatar

Trading feedback: (0)
 
Join Date: May 2012
Posts: 692
Garage
Default

Quote:
Originally Posted by Nige G View Post
What a load of fluff and bullshit.

Whether it was your own system or a plug in that you use, your database was still hacked 4 months ago and you didn't bother to tell anyone and then to rub salt in the wound you try to hide behind some crap about making security changes to make it a better experience for us.

I'm not angry at VS for being hacked, it happens. What I'm pissed off with is the complete lack of transparency about the situation and a total lack of respect for the users of this site by bullshitting about it and trying to hide it.
Note:

- Our database was not hacked, login info from the vendor was hacked (only info we know of to date - user name, pass, email)
- this was just exposed within the last 72 hours
- we are taking all proper precautions to make sure no user accounts or communities are harmed.'

Jeff M
HelenaAG is offline   Reply With Quote
Old 15-06-2016, 08:22 PM   #15
HelenaAG
VZ Editor

 
HelenaAG's Avatar

Trading feedback: (0)
 
Join Date: May 2012
Posts: 692
Garage
Default

Quote:
Originally Posted by Sam Jelfs View Post
You had time to update multiple forums with a bluff piece about updating security, but not too say "we believe we may have been hacked, please change passwords asap"?
Yes that was an automated post network-wide with an original message.

Quote:
Originally Posted by Sam Jelfs View Post
Now you are, but not in the first post on this thread, only when you have been called out for lying.
I have not lied, you can go back and forth on this but we have shared all we can at this time.

Jeff M
HelenaAG is offline   Reply With Quote
Old 16-06-2016, 03:28 PM   #16
Hermann
Seasoned Chat Slut
 
Hermann's Avatar

Trading feedback: (0)
 
Join Date: Jun 2010
Location: Romney Marsh Kent
Posts: 2,135
Default

The locked sticky above this one states.

Quote:
Please Note this does not impact the Home page Functions in any way. Your Password will remain as it is on there.
What are 'Home Page Functions'?

And does this mean our old passwords are still stored and used for part of the site and new reset ones for another part of the site? As that is how it reads to me.
Hermann is offline   Reply With Quote
Old 16-06-2016, 06:22 PM   #17
HelenaAG
VZ Editor

 
HelenaAG's Avatar

Trading feedback: (0)
 
Join Date: May 2012
Posts: 692
Garage
Default

Quote:
Originally Posted by Hermann View Post
The locked sticky above this one states.



What are 'Home Page Functions'?

And does this mean our old passwords are still stored and used for part of the site and new reset ones for another part of the site? As that is how it reads to me.
I think they mean the homepage word press or article section.

So that one should stay the same.

It does not appear the homepage passwords where involved in the breach.

jeff M
HelenaAG is offline   Reply With Quote
Old 16-06-2016, 11:53 PM   #18
DarrenW
Holy Calamity


Trading feedback: (0)
 
Join Date: Jul 2002
Location: Online
Posts: 67,074
Default

New passwords are being sent out via email in plain text? Jesus. FFS.

http://plaintextoffenders.com/faq/devs
__________________
DarrenW is offline   Reply With Quote
Old 17-06-2016, 09:39 AM   #19
veedubjunky
Help! I'm trapped in here
 
veedubjunky's Avatar

Trading feedback: (15)
 
Join Date: Jun 2007
Location: Chichester
Posts: 20,493
Default

I have just discovered when logging in again on my iPad for the first time that the system did not save my new password, I referred back to my 8 digit email code and tried that and it logged me in, marvellous!
veedubjunky is offline   Reply With Quote
Old 17-06-2016, 09:47 AM   #20
misteralz
I'm not an addict... honest!
 
misteralz's Avatar

Trading feedback: (0)
 
Join Date: Apr 2010
Location: Aberdeenshire
Posts: 3,789
Default

Quote:
Originally Posted by veedubjunky View Post
I have just discovered when logging in again on my iPad for the first time that the system did not save my new password, I referred back to my 8 digit email code and tried that and it logged me in, marvellous!
I've just had to do the same, but on my laptop. Twenty minutes after I'd changed my password from the 'temporary' one...
__________________
[SIGPIC]http://img.photobucket.com/albums/v7...G_8110-1-1.jpg[/SIGPIC]
misteralz is offline   Reply With Quote
Reply Post New Thread

Bookmarks

Thread Tools
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 10:06 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.

Disclaimer: For recreational purposes only, some assembly required. Any resemblance to real persons,
living or dead is purely intentional and the site admins are not responsible for direct, indirect,
incidental or consequential ridicule resulting from any defect or failure to perform. No animals
were harmed in the creation of this forum. Colours may fade over time. No other warranty expressed or implied.

volkszone.com

SupportingSupporting Brad's Cancer Foundation

 










 
© Volkszone • Terms and Conditions of use



volkszone.com is an independent Volkswagen enthusiast website owned and operated by VerticalScope Inc. Content on volkszone.com is generated by its users. volkszone.com is not in any way affiliated with Volkswagen AG.