Dear All,
Yesterday our hobbyking account password was stolen and reset by some one from Russia. The hacker logged in and placed order using the bonus points available in our account.
Possibly this could be a security breach and they might have stolen some more email ids and passwords.
Please login and check your bonus points. For safety reason please change your password.
Kumaran
Ahhh, i dont use/buy from HK so nothing bad for me.
Also good work Kumaran ji, in helping and spreading the news.
I have my points intact
Satyaji,
Since, we have a wholesale account we keep considerable amount in bonus points.
The hacker utilized that.
I was lucky to check my account today and the order is still under processing.
Hobbyking assured to cancel that order and credit it in our account again.
@himadri
May be their target is accounts with high bonus points.
Kumaran
Quote from: vibranthobbies on April 19, 2016, 11:54:16 AM
@himadri
May be their target is accounts with high bonus points.
Kumaran
That could be the case. I have very little bonus points about 4$. Good to hear that HK is helping out!
We got the amount back.
HK is investigating further on this.
Good to hear that :)
How would one know how many bonus points an account has?
Hopefully its not a systems breach at your end kumaran sir please do take care :thumbsup:
Breached just few accounts? If the hacker was successful to breach, he will get information of almost all accounts. Check out your computers and mobile phones for backdoors, key loggers or viruses.
Regards
my 0.53 $ are intact
>:D >:D ;D ;D
although unrelated .. perhaps members would be interested in checking
out the following
http://www.voltairenet.org/article185860.html
the incident took place a couple of years ago ... and is of doubtful veracity
it does concern russians and electronics
Dear All,
Please see this thread on RCGroups on similar incident. It happened on 25/04/2016;
http://www.rcgroups.com/forums/showthread.php?t=2651823
It is the same person who hacked our account. I am saying this based on the shipping address.
Its a hacker thats it
If it's a website database breach then they should patch the vulnerability immediately to save other fraudulent orders done by hackers and do store password and other information encrypted hashes. And just my personal opinion, they should not take rid of sql database again, as now they seems to switch to oracle database :hatsoff: Keep it up