Malware Warning

GOOD FUCKING NEWS:

Status of the latest badware review for this site: A review for this site has finished. The site was found clean. The badware warnings from web search are being removed. Please note that it can take some time for this change to propagate.

 

possible.. I would recommend everyone to change password.. just in case

 

Awesome news!!!

 

Don't know if this has anything to do with the recent malware, or if it's old news, but there are sites claiming to show accounts and passwords from this site. One of the sites says "View account logins and passwords for forum.phun.org here. Stop faking your details- bypass the mandatory registration wall of forum.phun.org instantly."

 

I couldn't check that as the "pw..." link instant redirects to Google. As I mentioned earlier I submitted the URL to Comodo Site Inspector, and its results were "generic" at best.

Guess we'll have to assume caution and suggest everyone change their account passwords, and immeditately report any compromise to site admin. Perhaps a temporary sticky?

Otherwise thanks and great work to the phun team for getting this sorted and phun back to its excellent self!

 

Well as long as they don't get admin accounts it doesn't really matter, they won't be able to do anything with regular accounts. But that doesn't mean you should have a password like: 123456 and put it on a note on your notebook! Having a save password always helps!

 

I just realised: NO MORE WARNINGS ON CHROME!!

 

Or with Firefox!

 

Yep, they should be all gone by now

 

Figured I bring it up just to be safe.

 

With regular accounts, could a mischievous (or malicious) 'intruder' ...

a) change your password and/or email to something you don't know?
b) change your posts to whatever they wish?
c) delete some (or all) of your posts (some in the 1000s)?
d) start a flame war pretending it is you?
e) do some (or all) of the above?

On stockboards, hijacking regular accounts is common place since the stakes are high. Pretenders would use multiple personalities to stress-out retail investors to buy or sell at the wrong time (usually into their waiting bids) to make a profit at their expense.

At Phun, the consequences may range between mild to severe inconvenience for regular accounts. If multiple accounts are compromised, it could be possible for intruder(s) to gang-up (troll) a specific individual particularly if they have a history of flaming posts. On an absolute worst, identity theft can result if identity data can be corroborated (e.g., Google+) to trigger financial transactions.

 

And they're back!

On Chrome and on this link at least:
http://forum.phun.org/showthread.php?t=973239

 

I had one with Firefox about 10 to 15 minutes ago

 

Ditto

 

Me too!

 

just had another on Chrome

 

http://www.ubuntu.com/

Any views on the above browser?

 

Still getting the warning on firefox.

 

yup, just had a warning again.