Active discussions

Meet the Other Phone. Child-safe in minutes.

Meet the Other Phone.
Child-safe in minutes.

Buy now

Please or to access all these features

Talk
AIBU?

Share your dilemmas and get honest opinions from other Mumsnetters.

Original poster

to tell you to CHANGE YOUR PASSWORD NOW

466 replies

BoreOfWhabylon · 19/08/2015 00:08

No, no I'm not.

See the stickied thread from Justine re hackers and go to the end. The Troll has just dumped a load of MN usernames and passwords on twitter.

OP posts:
SylvanianCaliphate · 19/08/2015 09:59

Even if it was phishing they had Admin log in as can be seen on the lists so they had full site access.

gordonpym · 19/08/2015 10:01

All the names on the list have password and IP addresses visible, not only yours and so is mine

enviousllama · 19/08/2015 10:03

This reply has been deleted

Message withdrawn at poster's request.

leedy · 19/08/2015 10:06

Even with Admin login you shouldn't have access to unencrypted passwords, though. According to MN at no point were passwords stored in plaintext, which is what points to phishing rather than actually getting them out of the system (it's a lot easier to get your mark to type the password in than to decrypt a load of encrypted data). Don't know if that's actually what happened, obviously.

kungfupannda · 19/08/2015 10:07

If it wasn't phishing how would my username be mis-spelled? I must have typed it in wrong when trying to log in.

LazyLohan · 19/08/2015 10:07

Can someone please PM me the list so I can check for mine?

zombiemeow · 19/08/2015 10:07

Is there a link to his Twitter? I can't find him to report

Itsmine · 19/08/2015 10:12

This reply has been deleted

Message withdrawn at poster's request.

differentnameforthis · 19/08/2015 10:12

Some of the passwords made me giggle Some of them made me facepalm... some used their username as their password, and some used mumsnet!

People are going on at MN for not caring about security, but how many times do people need to be taught/told how to use a good password, and not to use it for other sites?

In this case, it doesn't matter, but if people are trying to guess a password, they start with the obvious first. I wonder how many people use ABCbank as their online banking password. The mind boggles.

McPie · 19/08/2015 10:13

My eyes hurt after looking through that list! I don't think I am on it even though I had to keep logging in just after the attack, I think this is because as a comper I have my details in an open office document and copy and pasted it when needed rather than keep having to type it so the key stroke logger thing wouldn't have gotten anything from me. It might be worth typing your password elsewhere and copy and pasting it into mumsnet rather than typing to be on the safe side.

sharonthewaspandthewineywall · 19/08/2015 10:13

Can someone please pm
Me a link so I can check the
List?

gordonpym · 19/08/2015 10:14

I just wonder how the names on the list were picked up... Did he just select a random day/hour/minute and pick all the ones that were active? Anyone knows

enviousllama · 19/08/2015 10:14

This reply has been deleted

Message withdrawn at poster's request.

DontHaveAUsername · 19/08/2015 10:15

Had a look at the list and I wasn't on it but couldn't log in without changing my password so I've done it anyway. Who was behind it?

ginmakesitallok · 19/08/2015 10:16

A phishing scam makes perfect sense. If he managed to hack in somewhere, starts a bit of hysteria, people are no longer surprised to be diverted to a log on page, because funny things are happening, he gets the info from the fake log in page.

It's Shit.

enviousllama · 19/08/2015 10:22

This reply has been deleted

Message withdrawn at poster's request.

PennyForum · 19/08/2015 10:26

Oh no, thanks Gordon

DopeyDawg · 19/08/2015 10:27

I'd just like to say a very public THANK YOU THANK YOU THANK YOU

Thanks Thanks Thanks Thanks Thanks

to SquareStarfish for explaining some of what I need to know about making myself more secure (as I was on 'The List') I have now done so and am very grateful for your time and help.

To whoever did this:
I am disabled. One of my children has SEN. I have had the most appalling time trying to get appropriate provision and have found MN to be a lifeline. Literally a lifeline.
Despite the very real fear you created in me (which Square has helped assuage) I will continue to use MN to help with info and support to help me help my CHILDREN.

Why not use your energy and 'talents' to help / mentor children or young people?

You should be hugely ashamed of your 'prank'.

YouBastardSockBalls · 19/08/2015 10:27

Could someone check if I'm on the list please?

hellsbellsmelons · 19/08/2015 10:29

Youbastard no you are not

WellErrr · 19/08/2015 10:30

Could someone check me please?

Hulababy · 19/08/2015 10:30

It looks like phishing with key strokes recorded. Hence duplicate names and people attempting names with different combinations of caps lock/non caps lock.

And it's not in order of Mumsnet membership - we can see our registration number for example.

And if it was the Mumsnet database the passwords wouldn't be in plain text as already explained, even if entering as Admin.

And it is not simply a case of poor security either. Think about it. There are numerous hacking attempts and stolen data of massive multinational and government databases. If someone is so determined ...

YouBastardSockBalls · 19/08/2015 10:31

Thank you. I just tried to use a different username to check that and it said 'you do not own this username' when I know that I've used it for ages. Ideas??

BloodyDogHairs · 19/08/2015 10:31

Please could someone check for me? Thanks

akkakk · 19/08/2015 10:31

list is posted on this thread:
www.mumsnet.com/Talk/_chat/2451977-Am-I-on-the-list
page 11 ish

anyone worried about info captured about them can PM me...
I have also posted a rough guide to what you should do... :)