Increase in hacked accounts posting advertising content

[DarkUnderlord]

Since the start of this year, we've noticed an increasing number of accounts of users posting out-right advertising content. Usually the accounts are a bit older (a few years) and haven't posted for a while since their registration.

Accounts affected so far:
Bishamonten (visit website and win smartphone!)
Ghost Creations (best crypto pumps on telegram Make 1000% and more within 1 day, join channel)
OrcHeart
Musaab
Torian Kel
YanBG

It's possible they're some kind of long-term advertising strategy but we highly suspect these users use the same username / password combo on other websites which have been hacked, and bots are trawling the web for their accounts and trying to log in with them to post advertising content.

We encourage people to enable 2 factor authentication before your account ends up advertising crypto, or whatever the latest ponzi scheme is the cool kids are getting into these days. And also don't re-use passwords you nubs.

This isn't related to yesterday's down-time. We haven't been hacked in any way.

 

[normie]

maybe Infinitron was hacked by someone at Obsidian?

 

[LostHisMarbles]

I remember Musaab i think, definitely not a plant, proper user. So yeah, most likely hacked accounts (if not a coincidence).

Perhaps you can if possible 'freeze' the accounts, but not delete them? In case the rest of them have been hacked too; sooner or later, we all return to the codex after all.

 

[King Crispy]

Authy is your friend!

 

[IHaveHugeNick]

With the Code: LOLGROGNARDS you can get $5 off $50 for this beautiful Josh Sawyer themed fleshlight, click on the banner to order now.

 

[Semiurge]

How does the built-in 2FA work, will it require a code sent to your email at every login or is it more sophisticated? Or is it what Steam has, a separate authoring app of your choice?

 

[King Crispy]

1. Install Authy on your phone

2. Every month, Codex tells you to enter the code from Authy

3. Enter the code from Authy

4. Go back to 2.

 

[Melcar]

Someone here has been hacked.

 

[Vic]

I use a password manager that generates and saves unique and secure passwords for any site. I recommend doing the same. Bitwarden is a good free one.

 

[LostHisMarbles]

Yeah guys, that's smart.
Let a third party app, run from people you neither know nor can control, manage or provide your credentials. Today of all times. Uh huh. Best deal.

Or, if it's that hard, google password tips and follow common logic. Dangerous territory right there, i hear it doesn't even scale to our level

 

[Vic]

Let a third party app, run from people you neither know nor can control, manage or provide your credentials. Today of all times. Uh huh. Best deal.

bitwarden is open source, you can check the code here:

https://github.com/bitwarden

Also you can self-host it on your own machine, plenty of people self-host their password manager for the exact reason you mentioned.

Personally, I'm not gonna trust my own amateur skills over their company servers so I'm fine with just the browser extension that does all of that for me

 

[LostHisMarbles]

Other things have been open source and all the people, good boys, their momma loved them, contributed. Until the one bad actor came along and people started getting fucked, but hey, open source amirite? You wanted it free. End of the day, it's only your fucking bank account, why not risk and live a little!

Or, and that sounds even better my man, buy a second computer, learn how to host this software, do so, so that next time you format your main PC you can still have your credentials. Simple and in no time at all!
Right after of course you build a third PC, to host a virtual OS through which you host your own private VPN through which you connect via TOR.
All that assuming you don't lose or forget your cell phone, in which case you're fucked and can do absolutely fuckall all day long.
I mean really, let's use technology to simplify our lives and save time.

..For real dude?

Just figure out a very tough setpiece, only with a variable in it, variable being the only thing to remember per site, can even make it easy. Like, setpiece being:
ut;76a#(83
For everything.
And for the Codex (this being your variable), use something stupidly simple, like RPD
ut;76a#(83RPD for Codex
ut;76a#(83GWT for Watch

That's it. Most folks can remember a single, set strings of characters.
(if that's not "safe" enough for you and for some people it really isn't, odds are you need to RTFM about how to use the internet)

 

[Falksi]

1. Install Authy on your phone

2. Every month, Codex tells you to enter the code from Authy

3. Enter the code from Authy

4. Go back to 2.

Me trying to use this advice...

 

[mediocrepoet]

1. Install Authy on your phone

2. Every month, Codex tells you to enter the code from Authy

3. Enter the code from Authy

4. Go back to 2.

Me trying to use this advice...

I'm trying to remember the last time I saw a rotary phone, much less used one... It has to be over 30 years.

 

[Hammer Of The Heretics]

It wasn't that long ago, just the mid-90s... Fuck.

 

[Fedora Master]

Dear Sir:

I have been requested by the Nigerian National Petroleum Company to contact you for assistance in resolving a matter. The Nigerian National Petroleum Company has recently concluded a large number of contracts for oil exploration in the sub-Sahara region. The contracts have immediately produced moneys equaling US$40,000,000. The Nigerian National Petroleum Company is desirous of oil exploration in other parts of the world, however, because of certain regulations of the Nigerian Government, it is unable to move these funds to another region.

You assistance is requested as a non-Nigerian citizen to assist the Nigerian National Petroleum Company, and also the Central Bank of Nigeria, in moving these funds out of Nigeria. If the funds can be transferred to your name, in your United States account, then you can forward the funds as directed by the Nigerian National Petroleum Company. In exchange for your accommodating services, the Nigerian National Petroleum Company would agree to allow you to retain 10%, or US$4 million of this amount.

However, to be a legitimate transferee of these moneys according to Nigerian law, you must presently be a depositor of at least US$100,000 in a Nigerian bank which is regulated by the Central Bank of Nigeria.

If it will be possible for you to assist us, we would be most grateful. We suggest that you meet with us in person in Lagos, and that during your visit I introduce you to the representatives of the Nigerian National Petroleum Company, as well as with certain officials of the Central Bank of Nigeria.

Please call me at your earliest convenience at 18-467-4975. Time is of the essence in this matter; very quickly the Nigerian Government will realize that the Central Bank is maintaining this amount on deposit, and attempt to levy certain depository taxes on it.

Yours truly,

Prince Alyusi Islassis

 

[ERYFKRAD]

We encourage people to enable 2 factor authentication before your account ends up advertising crypto, or whatever the latest ponzi scheme is the cool kids are getting into these days. And also don't re-use passwords you nubs.

Or do not log off.

 

[Haba]

Hey guys!

Fund your dream RPG with this one clever trick!



50X HUGE RETURNS!

Spoiler

It is a scam, you dumb cunt.

 

[Vic]

buy cheap v1agra n0w.

 

[Kruno]

With the Code: LOLGROGNARDS you can get $5 off $50 for this beautiful Josh Sawyer themed fleshlight, click on the banner to order now.

i don't see the banner...

 

[ERYFKRAD]

With the Code: LOLGROGNARDS you can get $5 off $50 for this beautiful Josh Sawyer themed fleshlight, click on the banner to order now.

i don't see the banner...

I can see it. Try formatting your device.

 

[Kruno]

With the Code: LOLGROGNARDS you can get $5 off $50 for this beautiful Josh Sawyer themed fleshlight, click on the banner to order now.

i don't see the banner...

I can see it. Try formatting your device.

Windows won't let me delete C:\

 

[good fucking shit happen]

1. Install Authy on your phone

2. Every month, Codex tells you to enter the code from Authy

3. Enter the code from Authy

4. Go back to 2.

Queen soggy here tryna hack your accounts bros.

 

[NecroLord]

Dear Sir:

I have been requested by the Nigerian National Petroleum Company to contact you for assistance in resolving a matter. The Nigerian National Petroleum Company has recently concluded a large number of contracts for oil exploration in the sub-Sahara region. The contracts have immediately produced moneys equaling US$40,000,000. The Nigerian National Petroleum Company is desirous of oil exploration in other parts of the world, however, because of certain regulations of the Nigerian Government, it is unable to move these funds to another region.

You assistance is requested as a non-Nigerian citizen to assist the Nigerian National Petroleum Company, and also the Central Bank of Nigeria, in moving these funds out of Nigeria. If the funds can be transferred to your name, in your United States account, then you can forward the funds as directed by the Nigerian National Petroleum Company. In exchange for your accommodating services, the Nigerian National Petroleum Company would agree to allow you to retain 10%, or US$4 million of this amount.

However, to be a legitimate transferee of these moneys according to Nigerian law, you must presently be a depositor of at least US$100,000 in a Nigerian bank which is regulated by the Central Bank of Nigeria.

If it will be possible for you to assist us, we would be most grateful. We suggest that you meet with us in person in Lagos, and that during your visit I introduce you to the representatives of the Nigerian National Petroleum Company, as well as with certain officials of the Central Bank of Nigeria.

Please call me at your earliest convenience at 18-467-4975. Time is of the essence in this matter; very quickly the Nigerian Government will realize that the Central Bank is maintaining this amount on deposit, and attempt to levy certain depository taxes on it.

Yours truly,

Prince Alyusi Islassis

The Niggerian Government.

 

[Camel]

This isn't related to yesterday's down-time. We haven't been hacked in any way.

Sure it’s not related at all.