www.tdiclub.com

Economy - Longevity - Performance
The #1 Source of TDI Information on the Web!
Forums Articles Links Meets
Orders TDI Club Cards TDIFest 2016 Gone, but not forgotten VAG-Com List Unit Conversions TDIClub Chat Thank You




Go Back   TDIClub Forums > Forum and Web Page Info > TDIClub and TDIClub Forum News, Issues, Problems and Suggestions

TDIClub and TDIClub Forum News, Issues, Problems and Suggestions This is the place for updates on the website and forums. This is also the spot for forum questions, comments, ideas, gripes, requests, etc. This forum is NOT for posting problems about your car. Non-topic posts will be moved or removed.

Reply
 
Thread Tools
Old November 27th, 2018, 08:54   #1
jstn
Veteran Member
 
jstn's Avatar
 
Join Date: Feb 2009
Location: norton, ma
TDI(s): none, now.
Default Was the TDI Club forum hacked?

I was combing through some spam email and found an email sent to my TDI Club email alias on November 23, with the subject "tdiclub.justin@mydomain.com has been hacked! Change your password immediately!"

The email subject contained the specific email alias I use for TDIClub (tdiclub.justin@mydomain.com) and also had my exact forum password (which is NOT the password I use for my email, because it's an alias and can't even be used to access my email account).

Any explanation?

Justin
__________________
'12 bmw x5d jr 2.8 deleted | '08 bmw e92 m3 | dieseldriver.com

"Hey guys. Woah, Big Gulps, huh? All right! Well, see ya later!"
jstn is offline   Reply With Quote
Old November 28th, 2018, 21:21   #2
unitacx
Veteran Member
 
unitacx's Avatar
 
Join Date: Apr 2006
Location: Alexandria, VA
TDI(s): 2002 golf
Fuel Economy: as good as any other hybrid
Default

Yes.

I got 2 "extortion" spams dated 22-Nov-18. Both used the spamgourmet address used for TDI club and both showed the then-current password. (I never changed that password, so in theory, this could have dated back to 8-2009.)

Pro-tip for scammers: If you purchased a list of accounts and passwords to scam people, don't use Bitcoin. Bitcoin is anonymous and has caché, but you've just limited your target to people who are at least knowledgeable enough to set up a Bitcoin account. And try to stay away from accounts with spamgourmet addresses for obvious reasons.

Oh, it always helps to use accounts from a list where everyone on the list is going to have a basic knowledge of how the internet works (and therefore won't be inclined to go along with the scam).

Comments specific to the attack:

1. The account information was apparently purchased by the scammer(s) from whomever broke into the server.

2. The general format of the emails are the same, but the specific wording varies (at least in the two I received). This is probably to address spam filter issues. My guess is the dual mailing was an error.

3. The scammer made no attempt to mung or block my user account. That could be because, in the typical case, munging the TDIClub account would be a dead giveaway as to which list was compromised.

Last edited by unitacx; November 30th, 2018 at 22:48.
unitacx is offline   Reply With Quote
Old November 28th, 2018, 21:34   #3
unitacx
Veteran Member
 
unitacx's Avatar
 
Join Date: Apr 2006
Location: Alexandria, VA
TDI(s): 2002 golf
Fuel Economy: as good as any other hybrid
Default

This should be obvious, but users should be advised to identify any account with the same or a similar password. It's not difficult to find the identity of anyone here unless they took special precautions to remain in "deep cover", and so it's just a matter of time before this scammer or another purchaser of the account list will use the information to try to break into any other accounts on the web.

For most of us, this will force some long-delayed housecleaning of web signin data.
unitacx is offline   Reply With Quote
Old November 29th, 2018, 15:11   #4
Jetta_Pilot
Veteran Member
 
Jetta_Pilot's Avatar
 
Join Date: Apr 2005
Location: West Hill, Ont. Mexico mid October 2018 to end of April 2019
Default

Have you guys considered that YOUR own email account has been compromised?
What you're getting may have absolutely connection to TDI club.

One thing that ticks me off royally is people forwarding emails including several previous senders email addresses instead of sending BCC. That's one certain way email addresses get to Spammers.
__________________
All LED interior bulbs. Several VCDS mods. Darker window tint. EVO skid-plate. Malone Stage 2, Malone DSG tune. Winpower Projector headlights. Angel eyes. LED DRL's. 24mm H&R rear sway bar. Phase 1 & Phase 2 done.
Jetta_Pilot is offline   Reply With Quote
Old November 30th, 2018, 16:15   #5
unitacx
Veteran Member
 
unitacx's Avatar
 
Join Date: Apr 2006
Location: Alexandria, VA
TDI(s): 2002 golf
Fuel Economy: as good as any other hybrid
Default

Quote:
Originally Posted by Jetta_Pilot View Post
Have you guys considered that YOUR own email account has been compromised?
Not likely in this case, for a number of reasons.

That email to 50 closest friends thing, with a email addresses visible is ... well, I'm sure I've put several people off by asking that they don't do that. It's an invitation for the email address to be harvested by the first email virus to be opened by one of those 50 people.

Last edited by unitacx; December 1st, 2018 at 21:12.
unitacx is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
tdiparts got hacked? edstreet General Automotive 9 April 8th, 2009 10:44
Is there a VW Club ( NOT TDI CLUB) discount for LABOR? 97TDIStu General VW Discussion 5 March 11th, 2008 21:40
Hacked forum back up and running Golfy's Lady TDIClub and TDIClub Forum News, Issues, Problems and Suggestions 0 March 22nd, 2006 08:32
Fred's TDI Club Listed on National Diesel Technology Forum SkyPup TDI News/Tech 4 March 5th, 2003 08:58
TRUE VALUE OF TDI CLUB FORUM jrholt General VW Discussion 3 October 15th, 2002 17:41


All times are GMT -7. The time now is 11:57.


Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Copyright - TDIClub Online LTD - 2017
Contact Us | Privacy Statement | Forum Rules | Disclaimer
TDIClub Online Ltd (TDIClub.com) is not affiliated with the VWoA or VWAG and is supported by contributions from viewers like you.
© 1996 - 2017, All Rights Reserved
Page generated in 0.16523 seconds with 12 queries
[Output: 73.53 Kb. compressed to 65.09 Kb. by saving 8.44 Kb. (11.48%)]