Post Reply Account Hacked =(
7 cr points
Send Message: Send PM GB Post
25 / M
Offline
Posted 11/14/17 , edited 11/15/17
Just got home to find out that somehow my account info has been hacked and my debit card charged with $180 USD of subs. They changed the email and password and I am no longer able to log in.

The account name was MrRedLogan

I can provide the paypal transaction ID's if it helps.

Not sure how they got my info. Please help =/

55489 cr points
Send Message: Send PM GB Post
62 / M / Earth
Offline
Posted 11/14/17 , edited 11/15/17
Put in a support request: /contact
109853 cr points
Send Message: Send PM GB Post
58 / M / U.S.A. (mid-south)
Online
Posted 11/15/17 , edited 11/15/17

MrBlueLogan wrote:

Not sure how they got my info. Please help =/

The most popular method is if you happened to re-use the same password as you have used at another site whose database has been compromised.

You can check on that by entering your e-mail address at this site:
https://haveibeenpwned.com/

If any results pop up, and you think you might have used the same password there, you may have your answer.


I have also been wondering if CR's authorization token could be grabbed via Firesheep or similar attack tools if one were viewing CR via public Wi-Fi.

Der Zoodirektor
27069 cr points
Send Message: Send PM GB Post
36 / M / Germany
Offline
Posted 11/15/17 , edited 11/15/17

MrBlueLogan wrote:

Just got home to find out that somehow my account info has been hacked and my debit card charged with $180 USD of subs. They changed the email and password and I am no longer able to log in.

The account name was MrRedLogan

I can provide the paypal transaction ID's if it helps.

Not sure how they got my info. Please help =/



Did you receive assistance yet?
7 cr points
Send Message: Send PM GB Post
25 / M
Offline
Posted 11/15/17 , edited 11/15/17
I have not. I submitted a contact request but haven't heard back yet :/
7 cr points
Send Message: Send PM GB Post
25 / M
Offline
Posted 11/15/17 , edited 11/15/17

TheAncientOne wrote:


MrBlueLogan wrote:

Not sure how they got my info. Please help =/

The most popular method is if you happened to re-use the same password as you have used at another site whose database has been compromised.

You can check on that by entering your e-mail address at this site:
https://haveibeenpwned.com/

If any results pop up, and you think you might have used the same password there, you may have your answer.


I have also been wondering if CR's authorization token could be grabbed via Firesheep or similar attack tools if one were viewing CR via public Wi-Fi.



That was probably it as this password is over 2 years old. Most of my passwords are different but all my streaming services such as Netflix, Hulu, Funimation, and Crunchyroll all share the same password. I have already changed the passwords on all those and my email just to be safe. Thanks for the reply =)
109853 cr points
Send Message: Send PM GB Post
58 / M / U.S.A. (mid-south)
Online
Posted 11/15/17 , edited 11/16/17

MrBlueLogan wrote:

That was probably it as this password is over 2 years old. Most of my passwords are different but all my streaming services such as Netflix, Hulu, Funimation, and Crunchyroll all share the same password. I have already changed the passwords on all those and my email just to be safe. Thanks for the reply =)

From among those, I remember Funimation had a database leak. A quick search indicates it happened in July 2016, although it per a report elsewhere it didn't include plain text passwords, but rather salted SHA1 hashes of passwords:
https://www.animenewsnetwork.com/news/2017-02-22/report-2.5-million-funimation-accounts-compromised-in-data-breach/.112538

You must be logged in to post.