When visiting the forum this evening I got a message from Safari that I should change my password as the current one had been 'subject to a data leak'?
Anybody know anything about this?
Data Leak
Forum rules
For the discussion of topics related to the conservation, cultivation, propagation, exhibition & science of cacti & other succulents only.
Please respect all forum members opinions and if you can't make a civil reply, don't reply!
For the discussion of topics related to the conservation, cultivation, propagation, exhibition & science of cacti & other succulents only.
Please respect all forum members opinions and if you can't make a civil reply, don't reply!
-
- BCSS Member
- Posts: 1317
- https://www.behance.net/kuchnie-warszawa
- Joined: 20 Aug 2007
- Branch: SOMERSET
- Country: Portugal
- Location: Alentejo, Portugal
Data Leak
Patrick. Small varied collection of North American, Mexican and Andean Cacti. Variegated Agaves and Echeveria. Developing a succulent garden in Portugal. Joined Somerset BCSS and forum in 2007.
- el48tel
- BCSS Member
- Posts: 5281
- Joined: 04 Aug 2018
- Branch: LEEDS
- Country: UK
- Role within the BCSS: Member
- Location: Leeds
Re: Data Leak
Are you sure it was from Safari .... not likely to be ... more likely a scam to get you to reveal your current password. Don't click any links in any email or posts .... or reply to such mails.
Go to the proper sites or procedures to reset passwords.
Endeavouring to grow Aylostera, Echinocereus, Echinopsis, Gymnocalycium, Matucana, Rebutia, and Sulcorebutia. Fallen out of love with Lithops and aggravated by Aeoniums.
Currently being wooed by Haworthia, attempting hybridisation, and enticed by Mesembs.
Currently being wooed by Haworthia, attempting hybridisation, and enticed by Mesembs.
- MatDz
- BCSS Member
- Posts: 2111
- Joined: 06 May 2020
- Branch: None
- Country: PL/GB
- Role within the BCSS: Member
Re: Data Leak
There is small chance Safari goes through your saved passwords and compare them to each other when a data breach happened on one of the websites you are using, then flags all other websites with the same password, e.g.
* Gmail had a leak
* Safari knows you are using the same password there and on the forum here (because you saved it in the browser);
* When you visit BCSS Sarafi pings you to change your password because it's the same as in the compromised Gmail.
I would change the passwords again just to be safer, and start using a password manager to be actually safe (e.g. https://keepass.info/).
Mat
-
- Registered Guest
- Posts: 127
- Joined: 13 Jan 2020
- Branch: NORTH SURREY
- Country: United Kingdom
- Role within the BCSS: Member
Re: Data Leak
https://haveibeenpwned.com/
Use this website to see if your email has been involved in a data breech. I would advise to change passwords for that website and all other websites that use the same email and password
Use this website to see if your email has been involved in a data breech. I would advise to change passwords for that website and all other websites that use the same email and password
- ralphrmartin
- BCSS Research Committee Chairman
- Posts: 6052
- Joined: 11 Jan 2007
- Branch: None
- Country: United Kingdom
- Role within the BCSS: Chairman - Research
- Location: Pwllheli
- Contact:
Re: Data Leak
What it probably means is that you have re-used the same password on several websites, including this one, and there has been a data leak on one of the other websites for which you use the same password. Potentially, that password is now public knowledge and associated with your id, so to be safe, it would be a good idea to change it wherever you use. Very tedious, I know, but this is the price of using the same password on many sites.
Ralph Martin
https://www.rrm.me.uk/Cacti/cacti.html
Members visiting the Llyn Peninsula are welcome to visit my collection.
Swaps and sales at https://www.rrm.me.uk/Cacti/forsale.php
My Field Number Database is at https://www.fieldnos.bcss.org.uk
https://www.rrm.me.uk/Cacti/cacti.html
Members visiting the Llyn Peninsula are welcome to visit my collection.
Swaps and sales at https://www.rrm.me.uk/Cacti/forsale.php
My Field Number Database is at https://www.fieldnos.bcss.org.uk
-
- BCSS Member
- Posts: 1317
- Joined: 20 Aug 2007
- Branch: SOMERSET
- Country: Portugal
- Location: Alentejo, Portugal
Re: Data Leak
Thank you all for the advice. As it happens the password I use for this forum I don't use anywhere else. Should I still change it? What I understood from the message I got was that the Data Leak was from this site, but it doesn't sound like anybody else has had anything.
Patrick. Small varied collection of North American, Mexican and Andean Cacti. Variegated Agaves and Echeveria. Developing a succulent garden in Portugal. Joined Somerset BCSS and forum in 2007.
- MatDz
- BCSS Member
- Posts: 2111
- Joined: 06 May 2020
- Branch: None
- Country: PL/GB
- Role within the BCSS: Member
Re: Data Leak
It might have been matched using your email/login, I'd probably change it, if only for peace of mind.Patrick wrote: ↑Sat Jan 23, 2021 6:26 pm Thank you all for the advice. As it happens the password I use for this forum I don't use anywhere else. Should I still change it? What I understood from the message I got was that the Data Leak was from this site, but it doesn't sound like anybody else has had anything.
Mat
- el48tel
- BCSS Member
- Posts: 5281
- Joined: 04 Aug 2018
- Branch: LEEDS
- Country: UK
- Role within the BCSS: Member
- Location: Leeds
Re: Data Leak
Looking like it's a scam to get you to reveal your password.
Endeavouring to grow Aylostera, Echinocereus, Echinopsis, Gymnocalycium, Matucana, Rebutia, and Sulcorebutia. Fallen out of love with Lithops and aggravated by Aeoniums.
Currently being wooed by Haworthia, attempting hybridisation, and enticed by Mesembs.
Currently being wooed by Haworthia, attempting hybridisation, and enticed by Mesembs.
- ralphrmartin
- BCSS Research Committee Chairman
- Posts: 6052
- Joined: 11 Jan 2007
- Branch: None
- Country: United Kingdom
- Role within the BCSS: Chairman - Research
- Location: Pwllheli
- Contact:
Re: Data Leak
Another thing you can do is install Google Chrome It has a function to check for compromised passwords. That will give you an independent way of seeing what's up.Patrick wrote: ↑Sat Jan 23, 2021 6:26 pm Thank you all for the advice. As it happens the password I use for this forum I don't use anywhere else. Should I still change it? What I understood from the message I got was that the Data Leak was from this site, but it doesn't sound like anybody else has had anything.
Ralph Martin
https://www.rrm.me.uk/Cacti/cacti.html
Members visiting the Llyn Peninsula are welcome to visit my collection.
Swaps and sales at https://www.rrm.me.uk/Cacti/forsale.php
My Field Number Database is at https://www.fieldnos.bcss.org.uk
https://www.rrm.me.uk/Cacti/cacti.html
Members visiting the Llyn Peninsula are welcome to visit my collection.
Swaps and sales at https://www.rrm.me.uk/Cacti/forsale.php
My Field Number Database is at https://www.fieldnos.bcss.org.uk