LGR (La Guide Rose) Hacked ! Can this happend to MERB?

[Canadian Joe 652]

I guess this is more a question to the powers of being at MERB, Mods and beyond, and if this is not the place to put it then let me know and I will put it where ever it is suposse to go.

Recently La Guide Rose (LGR) was hacked. LGR is one of the equivalent escort review board sites in Europe. The hacking seems to have been done from Romania by a couple of agencies that did not like the reviews and took over the site (only God, Kaspar and David (guys in charge of LGR) know how this could happend), yet it did, even the domain name was re-register under the agency in Romanoia so they even lost their site URL.

Worst, the members of LGR (me included) received a notice telling us that the personal informaiton provided to LGR (e-mail, name, address, phone number) was compromised and they (Romanian Company) had acess to our user names and passwords.

We were adviced to enter into the new LGR site (soon to be up) and immediately change our password. We were also adviced not to access the old address for fear of hacking.

The LGR site will now have a different site address as the old one has been registered by the Romanian company. We are all waiting to acess the new site which just went on line today.

So If you are a LGR member you must have an e-mail from them by now explaining the situation if not then go to the www.leguiderose.cc site to get info and change your profile.

And to the Powers of being here at MERB, can this happend here? Maybe some of you should talk to Kaspar or David to find out how this happend and what was the mistake they make that made it happend.

Hope this info helps someone.

 

[Lion Heart]

Recently La Guide Rose (LGR) was hacked. LGR is one of the equivalent escort review board sites in Europe. The hacking seems to have been done from Romania by a couple of agencies that did not like the reviews and took over the site (only God, Kaspar and David (guys in charge of LGR) know how this could happend), yet it did, even the domain name was re-register under the agency in Romanoia so they even lost their site URL.

Worst, the members of LGR (me included) received a notice telling us that the personal informaiton provided to LGR (e-mail, name, address, phone number) was compromised and they (Romanian Company) had acess to our user names and passwords.

You mean that you have registered on an escort review site by providing personal info such as name, address and phone number . I don't think that trusting anything over the net other than secure banking sites and recognized transactional sites (such as e-bay) is a very wise thing to do.

Whether MERB can get hacked or not, there is no sensible personal info in it to get screwed with.

Lion Heart

 

[Canadian Joe 652]

There is no address or phone number required on LGR as info, yet a name and a valid e-mail address is required. Most of the members at LGR, as I will assume at MERB will give their full name and an e-mail address that is linked to the account.

Some, the most preventive, will get an e-mail address on a mail server like Hotmail (like yours truly) as their e-mail address of choice and will be reborn as Jhon Smith, yet others will make use of their name and personal or work e-mail address for one reason or another under the false impression of security that you get from the semi anonimous dealing you are holding through the Net.

I do know some people here that are very concerned that their address (personal or bussiness) that they enter into the LGR system for convinience of use may now be in the hands of people they did not authorized.

In addtion some people have the tendency of using the same or similar passwords for several uses. If in fact they have your name, a valid bussiness or personal e-mail address and your password of common use, some are concerned that unscrupulous people may get to trying to see what else your password actually opens.

The people that did this to LGR, most have known what they were doing (or the guys that run LGR are really dumb and left a big wellcome sign through some access into their site) those same people may decide that the info (at least of some of the members) is worth exploiting.

 

[Lion Heart]

Some, the most preventive, will get an e-mail address on a mail server like Hotmail (like yours truly) as their e-mail address of choice and will be reborn as Jhon Smith, yet others will make use of their name and personal or work e-mail address for one reason or another under the false impression of security that you get from the semi anonimous dealing you are holding through the Net

I presume most members are not using a home or business e-mail on MERB. Doing so would be equivalent to having bareback sex

Lion Heart

 

[Actionkros]

Hi there,

Something to consider here is that no web script is 100% safe. Specially popular boards such as vbulletin, invision power board and others.. since they are popular, many sites using and therefore more vulnerable of someone checking in depth the source and finding a security hole ( check securityfocus.com this site is dedicate to report the software developers and its users of security holes on commercial programs ). Having that said never use your personal e-mail for online boards, myself i have 3 e-mail accounts, 1 for business, 1 for personal use, and the other for online stuff ... and never use the same password for everything ... Also dont think that your password was compromised .. most of the software developers encrypt the passwords of the users therefore they are not readable even from the DB itself however they can take over your account by modifying your account.

Cheers

 

[Canadian Joe 652]

More info

Here is a link to the new LGR site with info on the hacking, the reasons and the dangers the admins of LGR forsee.

http://www.leguiderose.cc/hacked.htm