www.tdiclub.com

Economy - Longevity - Performance
The #1 Source of TDI Information on the Web!
Forums Articles Links Meets
Orders TDI Club Cards TDIFest 2016 Gone, but not forgotten VAG-Com List Unit Conversions TDIClub Chat Thank You

Order your TDIClub merchandise and help support TDIClub


Go Back   TDIClub Forums > Forum and Web Page Info > TDIClub and TDIClub Forum News, Issues, Problems and Suggestions

TDIClub and TDIClub Forum News, Issues, Problems and Suggestions This is the place for updates on the website and forums. This is also the spot for forum questions, comments, ideas, gripes, requests, etc. This forum is NOT for posting problems about your car. Non-topic posts will be moved or removed.

Reply
 
Thread Tools
Old April 21st, 2020, 07:19   #1
AntonLargiader
Veteran Member
 
Join Date: Jan 2004
Location: Charlottesville, VA
Default Password hacked

I got an email from a wanna-be scammer listing a password that of mine that he had. It was from here only, and I haven't used it in forever (it was to a previous account) so it's nothing to me, but if several people have the same thing happen then it might mean that there's been a data breach here.
__________________
Anton Largiader, Charlottesville VA
Awesome red wagon w/Bosal hitch.
AntonLargiader is offline   Reply With Quote
Old April 21st, 2020, 07:24   #2
Danielg42
Veteran Member
 
Danielg42's Avatar
 
Join Date: Jun 2007
Location: Irvine, CA
Default

yea, I changed mine this morning....
It was an old and short password I had used here, but for me it could have been breached elsewhere, as well...
Danielg42 is offline   Reply With Quote
Old April 21st, 2020, 08:01   #3
AntonLargiader
Veteran Member
 
Join Date: Jan 2004
Location: Charlottesville, VA
Default

OK. FWIW here's the email I got; let me know if you got the same one. He listed the actual password in the subject and the first line.

EDIT: OK, looks like it can't be pasted. Must all be unicode or something.
__________________
Anton Largiader, Charlottesville VA
Awesome red wagon w/Bosal hitch.
AntonLargiader is offline   Reply With Quote
Old April 22nd, 2020, 05:40   #4
lousyg
Newbie
 
Join Date: Feb 2013
Location: Chicago
Default

This has been going on for nearly a year. I use an email address specifically for tdiclub and I started getting these messages early 2019. I still get them occasionally (got a new one yesterday). A couple of us brought it up then but I'm not sure if anything was ever done.


I think I'm going to change my password here (to something new/unique) and see if the spam starts referencing the new password. That should tell us if the site is still hacked.


Edit: I'll add that I looked at the bottom of the page and see the site runs "vBulletin" version 3.8.5. The current released version is 5.5.6. Also, a quick Google search shows that there are multiple exploits that affect the version tdiclub runs. Hard to tell if they actually affect the site configuration, but it's always a good idea to keep the website software up to date.

Last edited by lousyg; April 22nd, 2020 at 05:47.
lousyg is offline   Reply With Quote
Old April 22nd, 2020, 11:11   #5
EECSentric
Veteran Member
 
EECSentric's Avatar
 
Join Date: Mar 2004
Location: Arlington, MA
Fuel Economy: 36-49
Default

I received the same type of email which included an attempt at extortion, etc.

I would strongly amplify the request to the admins to update the server & vBulletin. If the server is compromised, then the issue goes beyond someone stealing passwords. From my experience, they can also insert trojans and other malware directly on the site which can lead to the site getting blocked by google and ISPs. It's a huge hassle getting back from that.
__________________
James (aka EECSentric)
EECSentric is offline   Reply With Quote
Old April 22nd, 2020, 11:14   #6
VW Derf
Administrator
 
Join Date: Jul 1996
Location: Richmond, BC, Canada
Fuel Economy: 5.9L / 100km
Default

Hi Everyone,

Thanks for bringing this to our attention and we are looking into this. General recommendations are to use different passwords for different sites and to change passwords periodically.
__________________

2010 Golf Highline Wagon (Blue Graphite Pearl)
Aspherical Mirrors

- Past VWs:
2003 Indigo Blue TDI Bora Wagon;1996.5 Black 2.sl0w Golf
VW Derf is offline   Reply With Quote
Old April 27th, 2020, 23:21   #7
tvmaster
Veteran Member
 
Join Date: Jun 2010
Location: Socal
TDI(s): 2010 JSW
Default Hackers / extortionists breached TDIClub

Happened to me this week as well. They got email address and password. Havenít logged in in about three years, until today when I changed email & password. Has this breach been reported to users? If so, I donít remember getting the email. ***?
tvmaster is offline   Reply With Quote
Old April 28th, 2020, 09:06   #8
tvmaster
Veteran Member
 
Join Date: Jun 2010
Location: Socal
TDI(s): 2010 JSW
Default

Quote:
Originally Posted by VW Derf View Post
Hi Everyone,

Thanks for bringing this to our attention and we are looking into this. General recommendations are to use different passwords for different sites and to change passwords periodically.
Hi. So youíve had a week to Ďlook into ití. What did you find? Who breached the site, and what information did they get, if any? Weíd like to know so as to secure other emails/accounts/passwords which may be tied to TDIClub.
Thanks
tvmaster is offline   Reply With Quote
Old April 28th, 2020, 10:02   #9
pedroYUL
Veteran Member
 
pedroYUL's Avatar
 
Join Date: Sep 2011
Location: MI, USA
Default

This can happen to you on a different mechanism: if you store your passwords in your browser, or phone, use autofill, Tapatalk...and that device gets compromised.

I'm sure there is other ways your info could leak, but that is the one that comes to mind right now.

I have not received any emails with my login and password to this site, or any site...knock on wood.
pedroYUL is offline   Reply With Quote
Old May 1st, 2020, 20:06   #10
40X40
Experienced
 
Join Date: Feb 2006
Location: Kansas City area, MO
Fuel Economy: TBD, new data forthcoming
Default

I got a similar threatening email. My password was unique to this site. If the site continues to run on an antiquated version of vBulletin, it will happen again.
__________________
www.IHMSA.ORGhttp://www.youtube.com:80/watch?v=Xtsxt7xgbpc
If you omit pertinent info from your question, you cannot reasonably expect a good answer.//Not affiliated with any vendors except as a customer.// Wise people lurk more.// I'm not a guru.// 'I got actual real friends in the real world'-T'sTDI/ If you were the only entry, there wasn't a race.// Grammar and spelling really are important, but I don't claim to be good at it.// Typical drivers can't.
40X40 is offline   Reply With Quote
Old May 2nd, 2020, 05:05   #11
IndigoBlueWagon
TDIClub Enthusiast
Principal IDParts
Vendor
w/Business number
 
Join Date: Aug 2004
Location: South of Boston
Fuel Economy: 50/45/37
Default

I recently saw one of these emails in my spam folder, didn't occur to me that it might be from here. I wasn't terribly concerned about it. Honestly, we all have to operate on the assumption that any site we visit, any computer we use on a network, and our phones can be compromised at any time. Use good practices regarding usernames, passwords, and two factor authentication, and you'll minimize your exposure. That's really the best you hope for. My username and password here is unique to this site, and there's no type of payment processing done here (PayPal doesn't count). So I'm OK with continuing to visit TDIClub.com.

Those of you that visit idparts.com may have noticed we have a new store platform. Although it provides a lot of improvements we wanted on our shopper experience, the big motivator for the upgrade is improved security. It's an ongoing effort.
__________________
2002 Jetta wagon, 412K, RC3+; 1993 Mercedes-Benz 300D 2.5, 199K; 1997 Passat, 289K; '99.5 Golf, 262K; 2011 335d, 64K; 2015 Golf Sportwagen, 14K. Principal, http://www.idparts.com
Kid's cars: 2002 Golf TDI, 2002 Jetta TDI, 2015 Passat TDI SEL

Last edited by IndigoBlueWagon; May 2nd, 2020 at 05:12.
IndigoBlueWagon is offline   Reply With Quote
Old May 4th, 2020, 19:13   #12
tomo366
TDI Lifer, Member #131
 
tomo366's Avatar
 
Join Date: Jun 1997
Location: Kensington, Maryland USA
Default

I am getting these threatening emails 3–4 times a week tomo366 which is my login but not my password anywhere
__________________
My page is Dedicated to the Memory of
Christopher Farnham RIP my friend!
Great friend and supporter of TDICLUB
2015 Jetta TDI SEL Tornado red
2014 BMW 328D XDrive Glacier Silver
2015 Jeep Grand Cherokee Overland EcoDiesel
2004 Jeep Grand Cherokee Black!
tomo366 is offline   Reply With Quote
Old May 4th, 2020, 21:27   #13
VW Derf
Administrator
 
Join Date: Jul 1996
Location: Richmond, BC, Canada
Fuel Economy: 5.9L / 100km
Default

Hi everyone,

Sorry for the delay in responding directly to this. I have been looking into this and while I have not tracked down any specific compromise of the forms, it is entirely possible at one point it may have happened at some point in the past given the feedback from members.

If you receive such an email, please delete it and do not respond to it as they are obliviously a scam. Also please change your password, especially if you used the same username/password combination across other sites in the past as that is considered a bad practice. I highly recommend everyone follow password management best practices such as not reusing passwords between sites and changing them periodically along with following other best practices.

Moving forward I have spent all my available time of the last several of weeks restarting the migration of this forum software that is better support and modern. While I have made numerous attempts over the past few years, they have always been stopped due to a few issues. The most significant was the fact that the two potential platforms that were viable did not properly support linking to many of the existing images and documents nor adding new resources, specifically anything that isnít an image (i.e. PDF, word files, etc.). IMHO those are very valuable resources I did not want to loose that info from the past and into the future. While both options that I have considered have made many advancements in the past few years to limit the loss of data, they still arenít 100%.

I have come to the unfortunate conclusion that it wonít be a perfect migration to a new platform, so Iím pressing ahead and will just select the option that will be good enough. Once the test migrations to these two test platforms is complete, I will solicit some input from the membership to help determine which software to move to. Iíve almost completed the migration to one of the test sites, but I am still working with support on the other option to deal with some migration issues. Iím hoping to have the test sites up early next week, but some of the progress is out of my hands.
Anyways, I wanted to give everyone a quick update so you donít thing this issue is being ignored and a path forward is being rigorously being worked on.

Fred
__________________

2010 Golf Highline Wagon (Blue Graphite Pearl)
Aspherical Mirrors

- Past VWs:
2003 Indigo Blue TDI Bora Wagon;1996.5 Black 2.sl0w Golf
VW Derf is offline   Reply With Quote
Old May 12th, 2020, 12:42   #14
BobnOH
not-a-mechanic
 
Join Date: May 2004
Location: central Ohio
Fuel Economy: 50/45/35
Default

One strong vote for keeping this platform. Do you think it's any less secure? There's been a rash of hostage type scams recently, most of what they get is old data, they all want bitcoin. One had my home password, I did not respond, nothing happens, changed my password a week or 2 later.
BobnOH is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
TDIClub user/password info hacked. jvance TDIClub and TDIClub Forum News, Issues, Problems and Suggestions 1 February 6th, 2019 08:29
hacked odometer INISLDR VW MKIV-A4 TDIs (VE and PD) 27 June 14th, 2015 22:07
My account was not hacked LustForTDi TDI Fuel Economy 16 September 1st, 2010 12:57
tdiparts got hacked? edstreet General Automotive 9 April 8th, 2009 09:44
Password 2004STARWARSTDI TDIClub and TDIClub Forum News, Issues, Problems and Suggestions 3 December 21st, 2007 04:11


All times are GMT -7. The time now is 21:10.


Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright - TDIClub Online LTD - 2017
Contact Us | Privacy Statement | Forum Rules | Disclaimer
TDIClub Online Ltd (TDIClub.com) is not affiliated with the VWoA or VWAG and is supported by contributions from viewers like you.
© 1996 - 2020, All Rights Reserved
Page generated in 0.10705 seconds with 13 queries
[Output: 123.02 Kb. compressed to 103.04 Kb. by saving 19.99 Kb. (16.25%)]