Clubregistration Hacked?
#16
Rennlist Member
I got the same ransomeware email. Same unique address in use.
My wife (also a PCA member) and I reported this to the national office 3-4 weeks ago, and she identified the spam as coming from the club registration site. She asked that someone get back to her (never happened), and that a notice should be sent out to ALL people potentially affected by this hacking. Further, she strongly suggested that this be done ASAP. Last night, I received a similar message to hers, so clearly, in the interim 3-4 weeks, nothing has been done. Needless-to-say, she was less than amused and called PCA headquarters again today.
She was able to directly identify the password (in our case) as being unique to the club registration site, just in case anyone is wondering. The new hack is trying to extort money from members so it won't be published that they are looking at **** sites. In many cases, we are sure that this is not the case, as they claim to have noted on the supposedly hacked computers.
She was able to directly identify the password (in our case) as being unique to the club registration site, just in case anyone is wondering. The new hack is trying to extort money from members so it won't be published that they are looking at **** sites. In many cases, we are sure that this is not the case, as they claim to have noted on the supposedly hacked computers.
#17
#18
NASA Racer
Rennlist Member
Rennlist Member
Again to be clear on implications here - these criminals likely have physical address of people known to have race cars...i.e., better off than most and a pretty good robbery target.
#19
Three Wheelin'
Just so I understand, you guys are receiving emails with usernames and passwords included (that is, written out in plain text) in the actual email message?
BTW, I'm just a guy with a background in similar systems. I'm in no way affiliated with clubregistration.net.
BTW, I'm just a guy with a background in similar systems. I'm in no way affiliated with clubregistration.net.
#21
It's very possible for hackers to unencrypt password files. Many sites use weak / easily broken encryption, and many
passwords can be tested & quickly unencrypted using dictionary attacks.
Simple truth is most sites don't have the time / resources / expertise to prevent these types of hacks.
passwords can be tested & quickly unencrypted using dictionary attacks.
Simple truth is most sites don't have the time / resources / expertise to prevent these types of hacks.
#22
NASA Racer
Rennlist Member
Rennlist Member
Also, I have been getting notifications of unauthorized login attempts to other accounts = obviously trying out the hacked username/password combo for access to banking, etc.
#23
How many accounts were hacked?
They would certainly have access to all of that info with username and password...
Thanks for trying to get them to alert users to the hack. A notification email would have been nice.
My wife (also a PCA member) and I reported this to the national office 3-4 weeks ago, and she identified the spam as coming from the club registration site. She asked that someone get back to her (never happened), and that a notice should be sent out to ALL people potentially affected by this hacking. Further, she strongly suggested that this be done ASAP. Last night, I received a similar message to hers, so clearly, in the interim 3-4 weeks, nothing has been done. Needless-to-say, she was less than amused and called PCA headquarters again today.
She was able to directly identify the password (in our case) as being unique to the club registration site, just in case anyone is wondering. The new hack is trying to extort money from members so it won't be published that they are looking at **** sites. In many cases, we are sure that this is not the case, as they claim to have noted on the supposedly hacked computers.
She was able to directly identify the password (in our case) as being unique to the club registration site, just in case anyone is wondering. The new hack is trying to extort money from members so it won't be published that they are looking at **** sites. In many cases, we are sure that this is not the case, as they claim to have noted on the supposedly hacked computers.
#24
ClubReg has been made aware of the breach and we are working to contact the accounts. An official notice will go out this weekend or Monday. We do take this very seriously. Again we are asked about credit card info. We do NOT store that information on our servers, nor do we have access to it.
We do apologize for the inconvenience this may cause everyone. Please understand that while we do not discuss our methods of encryption we are already looking into how to protect it further to minimize this happening again in the future. If you wish to discuss this you may call our offices directly at 512-273-5016
Thank you,
Chris Alvarado
ClubRegistration.net
We do apologize for the inconvenience this may cause everyone. Please understand that while we do not discuss our methods of encryption we are already looking into how to protect it further to minimize this happening again in the future. If you wish to discuss this you may call our offices directly at 512-273-5016
Thank you,
Chris Alvarado
ClubRegistration.net
#25
Rennlist Member
It is my understanding that the sextorion (sp) emails went out to a LOT of people worldwide. A few have noted that it was their old Linkedin pw but could be from other hacks also.
https://www.businessinsider.com/new-...bitcoin-2018-7
https://www.businessinsider.com/new-...bitcoin-2018-7
#26
It is my understanding that the sextorion (sp) emails went out to a LOT of people worldwide. A few have noted that it was their old Linkedin pw but could be from other hacks also.
https://www.businessinsider.com/new-...bitcoin-2018-7
https://www.businessinsider.com/new-...bitcoin-2018-7
DO THEY HAVE SOMEONE IN MY HOUSE??
#30
WRONGLY ACCUSED!
Rennlist Member
Rennlist Member