Here:
http://www.remortgagebestdeals.com/sdmb/
Possibly also phishing for user names and passwords. Don’t try to log in.
Here:
http://www.remortgagebestdeals.com/sdmb/
Possibly also phishing for user names and passwords. Don’t try to log in.
I miss the chicken board…
I’ll pass this on.
Thanks.
How do they do that? I noticed that this thread is not in their version of ATMB.
I’m not sure how it works, but however they copied the content, they did it around 8:37 Eastern last night. You can see there are no posts more recent than that.
Whomever is behind that has been targeting other boards as well.
A Google search on the street address of the registrant shows a diversity of domain names with a decidedly marketing bent. The street address does not jive with Google Maps nor zillow.com. IIRC, that means a fraudulent domain registration under ICANN rules.
The phone number is a wireless line managed by Verizon.
If I read the other forums correctly, if you plug in just the street address and the zip code, it might give you the correct state.
The correct state is MI, not AL. The rest of the address is correct.
That is wild. Didn’t know such a thing could be done.
To repeat Cheshire Human: do not log on there.
So abort the drone strike?
Need answer fast.
How about trying to register a new account for shits & giggles?
Just tried. First page is the registration agreement. When you accept that, you get a blank page.
Like Cheshire Human said, they want you to try to log in.
For those new to the 'Net (hey, we keep reproducing!), this is a phishing site. By fooling you into thinking it is one of the top forums on the 'Net, you log on with your username and password.
What good does that do them? They use or sell your username to black hearted folks who try that same combination on lots of other sites to hack into your account because you used the same password on multiple web sites. Don’t do that.
Just tried to log in(made up name/password. Blank page.
I use the same user name and password here and also on another forum. Is there any harm in that?
Not necessarily, but it’s considered a bad idea. If anybody manages to find your password on any account, then they have your password on every other web site where you’ve used the same password. That’s what they are looking for. Especially if you use the same password to sign in to your bank account, your credit card account, your doctor’s office, insurance site, . . . You don’t want that to happen.
It’s extremely unlikely that this person has any idea their website has been hacked and used this way.
In most cases scraped sites aren’t hosted by the actual scammers. That obviously wouldn’t work out well for them. They find unused or infrequently updated sites with security vulnerabilities and take them over.
The site is hosted by CloudFlare in San Francisco. If they’re notified that it’s a counterfeit site they can shut it down. Then it’s up to them to worry about finding their customer and notifying them the site was hacked.
There are bunches of web scraping programs out there available for free and commercially. They can’t access the SDMB database but they can take an exact snapshot of every public page at a given point in time. Searching the SDMB weblogs should easily find the IP address of the scraper since you know the times of the last posts when the scrape was done.
So what happens if you have SD bookmarked and your computer autologs you?
Okay but if I use the same uName & (simple) pw for message boards, but then a 12-char complex pw for banks, email, doc, etc. I hope I’ll be okay.
I manage my own pws. They’re memorized. I only have 3 pws, the two above and one for work which auto-expires every 90 days.