Forum Korner User Security

[Darth Vader]

I would like this thread to be noticed by staff and admins because it is a very crucial problem within FK. A few days ago, someone on FK decided to breach into my personal facebook account and do some very inappropriate things. Now, when I signed up for FK, I used an email that was also linked to my facebook and that is how he was able to take my FB. Ever since this happened to me I find the security of users on FK very questionable. As an FK member I want to ask both admins and staff to get together and talk about this issue and resolve it. I'm not trying to disrespect staff in any way but this is a problem that I feel is being ignored and I thought I could be the one to bring it to light.

So what now?
*Make emails CONFIDENTIAL! Only Staff and Admins should see emails.
*As FK Staff and Admins, you guys should get together and fix this.
*Lastly, please do not ignore this.

I am not the only user that has been compromised because of FK.
@Witch had his site hacked.
@lurids had almost all of his stuff taken.
@Homie lost IG's, Kiks, and many of other things.

The list goes on. Again I'm not trying to be a dick. I just want to make FK a much safer place for people to be.

NOTE: I did and still do have the "Hide My Email" option checked.

@Philly
@Mitchell
@Beware
@Michael
@Hope

 

[Rare]

I think this is definitely something that needs to be fixed. Thanks for putting it out there to em' Darth! Kudos for you

 

[Sapphire]

This is an extremely easy fix...

Follow my steps here: UserCP>Edit Options>"Hide your email from other members."

Picture: http://prntscr.com/55uqt6

I think I resolved this that quickly!

EDIT: By the way, now only Mitchell and Philly can see your email in Admin CP. Not even staff can see it.



/close

 

[Darth Vader]

This is an extremely easy fix...

Follow my steps here: UserCP>Edit Options>"Hide your email from other members."

Picture: http://prntscr.com/55uqt6

I think I resolved this that quickly!

EDIT: By the way, now only Mitchell and Philly can see your email in Admin CP. Not even staff can see it.



/close

No you dont understand. I have that setting enabled. The guy was able to get in the FK database and grab my email.

 

[nadav]

I think that FK staff should also be able to give us the IP of certain members so we're able to take legal action.

 

[Sapphire]

No you dont understand. I have that setting enabled. The guy was able to get in the FK database and grab my email.

Not possible unless it was an old DB leak. Make a private inquiry about this immediately if this is truly the case.

Or you can just update your passwords and emails often.

 

[Shiver]

This hasn't happened to me yet but I am scared at the fact it could happen. I saw some guy on FK that jacked @lurids Twitter by getting his password in the databases of fk or whatever.. He straight tweeted his common passwords, emails, and i believe his dox(not sure). So thats why I am scared it could happen to me.. there is a definitely possibility it could if we don't fix it though.. :/ I hope this can get resolved...

 

[Darth Vader]

Not possible unless it was an old DB leak. Make a private inquiry about this immediately if this is truly the case.

Or you can just update your passwords and emails often.

I shouldn't have to change my email and password weekly. How does something like this happen to multiple members? @Witch @lurids and myself were all compromised by the same guy.

 

[Narc]

You must be joking. The ONLY DB spill is very old and comes way before you even joined. Nothing has been compromised. You prop just have shitty passwords or download rats. Not our fault you dont secure your stuff.

 

[Lian Tsui]

Hmu when my fb is hacked, couldn't give a damn tbh

 

[Darth Vader]

You must be joking. The ONLY DB spill is very old and comes way before you even joined. Nothing has been compromised. You prop just have shitty passwords or download rats. Not our fault you dont secure your stuff.

I'm not trying to blame anyone. I have very long passwords for everything I own. All I want staff to do is take the time to investigate this. If this happened to just 1 user, then its okay to put aside Mitchell but this is happening to multiple FK users.

 

[Lian Tsui]

I'm not trying to blame anyone. I have very long passwords for everything I own. All I want staff to do is take the time to investigate this. If this happened to just 1 user, then its okay to put aside Mitchell but this is happening to multiple FK users.

Inb4. It's been Mitchell all the time, decrypting ur hashes.

(Illuminati confirmed)

 

[Philly]

No you dont understand. I have that setting enabled. The guy was able to get in the FK database and grab my email.

Noone was/is able to get in the database what the hell are you smoking on? You better share at least...

The only, ONLY person that has access to the database at this time is ME, I have very strict permissions on this, with high security settings reassuring the database has never been touched by anyone else. Mitch had access to the database at one time, but no longer does that is current time. Why do you believe everything you hear this is the internet... If someone had or has access to the database other then me, why on earth would they waste their time taking your account to get on your facebook, when they could just as easily take my account, and then fuck everything up... You just are not making any sense to me here, and it seems you may be a very gullible individual. If your account was compromised here on FK it was because you where either ratted, shared your password, or are using the same password as you do on another online service that is in fact compromised perhaps.

If you really think someone has or is getting into the database please show some evidence of this rather than 3 users out of 50,000 getting their account taken. The absolute ONLY user information that is public is users that registered before 2012, and have not been active since to change their information, anyone that has signed on after this period of time is beyond safe, and is far from the word untouchable.

If there was or ever is a security issue I would assess it, and be sure everyone know everything necessary for further securing their online accounts.

 

[Lian Tsui]

Noone was/is able to get in any database the fuck are you smoking on? You better share at least...

The only, ONLY person that has access to the database at this time is ME, I have very strict permissions on this, with high security settings reassuring the database has never been touched by anyone else. Mitch had access to the database at one time, but no longer does that is current time. Why do you believe everything you hear this is the internet... If someone had or has access to the database other then me, why on earth would they waste their time taking your account to get on your facebook, when they could just as easily take my account, and then fuck everything up... You just are not making any sense to me here, and it seems you may be a very gullible individual. If your account was compromised here on FK it was because you where either ratted, shared your password, or are using the same password as you do on another online service that is in fact compromised perhaps.

If you really think someone has or is getting into the database please show some evidence of this rather than 3 users out of 50,000 getting their account taken. The absolute ONLY user information that is public is users that registered before 2012, and have not been active since to change their information, anyone that has signed on after this period of time is beyond safe, and is far from the word untouchable.

If there was or ever is a security issue I would assess it, and be sure everyone know everything necessary for further securing their online accounts.

Almost thought I had a shot at accessing it. Damn Philly, couldn't u tell me earlier?
almost congrats at 15k btw

Also @ op google ur emails to see if ur in dumps.

---

FK database is public because Philly is a fuck up.

lol gg see u in another round lel
no re

 

[Darth Vader]

Noone was/is able to get in the database what the hell are you smoking on? You better share at least...

The only, ONLY person that has access to the database at this time is ME, I have very strict permissions on this, with high security settings reassuring the database has never been touched by anyone else. Mitch had access to the database at one time, but no longer does that is current time. Why do you believe everything you hear this is the internet... If someone had or has access to the database other then me, why on earth would they waste their time taking your account to get on your facebook, when they could just as easily take my account, and then fuck everything up... You just are not making any sense to me here, and it seems you may be a very gullible individual. If your account was compromised here on FK it was because you where either ratted, shared your password, or are using the same password as you do on another online service that is in fact compromised perhaps.

If you really think someone has or is getting into the database please show some evidence of this rather than 3 users out of 50,000 getting their account taken. The absolute ONLY user information that is public is users that registered before 2012, and have not been active since to change their information, anyone that has signed on after this period of time is beyond safe, and is far from the word untouchable.

If there was or ever is a security issue I would assess it, and be sure everyone know everything necessary for further securing their online accounts.

Thank you. This is what I and other users I know wanted to hear. Thank you for the reassurance. Sorry if I came off as a dick I just wanted to address it.