Question: ET or Planet Forums ever hacked?

[Fforest]

Background
I recently received a spam email demanding bitcoins or threatening to post stuff on social media. Usual type of thing, i hacked your PC, video'd some stuff while you watched porn then removed my software. Pay me or i publish sort of threat.

To validate the email threat, a password I use was disclosed. As it happens, they were spot on with the password.

My Questions
Has anyone else received this sort of threatening email?
Was the password quoted one that you use on any of the Planet Forums or Entropia Tracker?

What is my reasoning?
For anything that is not mainstream in my life, I have a generic email that i use (forums and ET included) and this is where the email turned up. The hacked password that was revealed in the email is one i have only ever used on ET and the Calypso, Arkadia and Monria forum sites.
I am always up to date on Anti Virus and never click unknown links or strange emails (plus i always cover the webcam when looking at porn )
This leads me to conclude that the details revealed in the email could only have come from one of the four sites mentioned. (Might have also used it on RT forum but link to that seems broken)

Going forward
I have reset all four passwords on these sites so that they are now unique, so if anything turns up in the future I will have a better handle on the source.

Curious to see people's replies.

Fforest

 

[Tobi]

I have received the same type of mail containing my EF password. Does not mean much though, because I use that password on some other sites as well.

 

[PigeonQueen]

The hacked password that was revealed in the email is one i have only ever used on ET and the Calypso, Arkadia and Monria forum sites.

That's why you should use different passwords on different sites -- to be able to detect weak link immediately
BTW I've got two similar emails recently, without any passwords tho.

 

[Svarog]

I'm regularly getting the same email with the password from myspace that I haven't used for 15 years and I don't even have a webcam

 

[Hijacker27]

They're automated emails from hacked databases, just ignore them. They have no data on you other than your email and passwords related.

 

[SoReal]

yep Ive had them
setup a spam filter so I dont even see them now and yes the password they had was one I had used .

./ignore lol

 

[Svena]

I think these smaller forums don't really report it, but you can also check:

https://haveibeenpwned.com/

To see if you have been compromised on bigger sites or attacks.

 

[Mac Farmer]

Thats nothing . My windows wasnt activated and friend of mine downloaded something from google to activate it .

This shit stop every anti virus i had and change name of all files in my computer made them total useless . They left me a folder in C where it showed how and and to who i must send bitcoins or usd to get my files repaired .

I just got the hard drive out and smash it to the ground . Never think of something like that can happend to me but it did .

Watch out what you download or what you open this days !

KMS_piko was name of the program he download . So never download this to activate your windows !

 

[Keek]

this!! hit me this summer , little late, been around sins 2012

LinkedIn Breach: Worse Than Advertised
https://www.bankinfosecurity.com/linkedin-breach-worse-than-advertised-a-9113
https://smallbiztrends.com/2012/06/linkedin-security-breach.html

they control my camera, watching me watching porn^^ , want bitcoin or they show it to all my friends
so funny,

just change password

 

[Blueberry]

yes this forum has been breached lately
check: https://raidforums.com/Thread-planetcalypsoforum-com-july-2019-vB-64k-Users-Gaming-Forum

 

[dale011]

Planet Calypso – 62,261 breached accounts

Planet Calypso – 62,261 breached accounts
12. January 2020

In approximately July 2019, the forums for the Planet Calypso game suffered a data breach. The breach of the vBulletin based forum exposed email and IP addresses, usernames and passwords stored as salted MD5 hashes.

 

[GAMBLE]

old news but lets some people know who did not.

In approximately July 2019, the forums for the Planet Calypso game suffered a data breach. The breach of the vBulletin based forum exposed email and IP addresses, usernames and passwords stored as salted MD5 hashes.

 

[Max Hec]

The OP's question - "ET or Planet Forums ever hacked?"
This is the wrong way to look at internet security.

All websites/forums will get hacked its just a matter of when.
The biggest reason for that is the code used on servers.
So basically "Its Not IF a website will get hacked, its a matter of When." - Leo Laporte

I attribute that to Leo Laporte but its not an exact quote.
However approximately 10 years back Leo had a very frank and highly open discussion about how often his leading-edge technology website was getting hacked, why, and how his security people are constantly dealing with security breaches. Couldn't find a link, it was either on twit.tv "This Week in Tech" or "Security Now" with Steve Gibson.
Even for people within IT that one episode was extremely interesting, but it can explain a lot to non-IT people.

 

[theProphet]

https://twitter.com/haveibeenpwned/status/1216297348789194753?s=20

it seems there's some interesting sidefact:

72% of addresses were already in @haveibeenpwned

and i bet my ass that 0,1% of addresses also used email, loginname, and a rainbowlist password on their amazon ring "security" cam. i've read that's the new shit everyone must have, and partially co-funded by local gov or police. when you don't also have it, you devalue your neighborhood!

 

[Sci-Tek]

This again have resurfaced under: Cit0day. ( https://www.troyhunt.com/inside-the-cit0day-breach-collection/ )

Judging from https://gist.githubusercontent.com/...5ab86c/Cit0day Prem [_special_for_xss.is].txt
it was close to 51k entries.

So if you haven't changed your password since July 2019, you should change it now.