So, it appears the user CreateaHooktheorayccount has recently been hacked by a finance company. I say this because looking at the persons history he wasn’t like this before.
This is a customer support scam where the scammers spam fake phone numbers on random websites in hopes that a victim finds them on a web search.
This is really weird. He used to edit tabs like a normal person, then stopped editing and started spamming weird finance stuff on tabs. Probably got their info leaked
Another weird thing hes also spamming the same thing that “inthewoodpile” did yesterday
Yes it does appear that that account’s password was just guessed (so not a hack per se). We encrypt passwords so I had no idea what it was, but I guessed it on literally the first try (it was not good…). A good reminder to use reasonable passwords even on low security risk accounts like this (I get that this is a music site and not your bank account, but still).
I have reset the passwords and suspended these accounts so they can’t do any more spamming and deleted all the spam comments that I could find.
We have also added spam detection in that edit comment field that auto suspends accounts that fall into it so hopefully it won’t happen again.
These guys have been relentless though (similar issues on this forum the past couple days which has also been locked down requiring manual approvals for now).
Not sure why they don’t give up and move on to an easier target.
Thanks for the quick reporting on all this.
Dave
3 Likes
try to make it so you cant use basic passwords on the site like “password” or “12345678”