Jump to content
Sign in to follow this  
hypird

Databreach

Recommended Posts

Google's tool is telling you that a password you use for mygnrforum (and potentially other websites) has been found in a breach. It's not saying that it was breached here.

You should change that password here and anywhere else you are currently using it.

If you are curious where it was breached, you can check your email address here: https://haveibeenpwned.com/

They also provide a password checker here: https://haveibeenpwned.com/Passwords

  • Like 1
  • Thanks 1

Share this post


Link to post
Share on other sites
On 11.2.2019 at 12:48 AM, highvoltage said:

Google's tool is telling you that a password you use for mygnrforum (and potentially other websites) has been found in a breach. It's not saying that it was breached here.

You should change that password here and anywhere else you are currently using it.

If you are curious where it was breached, you can check your email address here: https://haveibeenpwned.com/

They also provide a password checker here: https://haveibeenpwned.com/Passwords

No it specifically said mygnrforum.com is known to have data breach. It didn't warn me about my pasword or username, it said this site has had databreach. My email is not found in those databases

Edited by hypird

Share this post


Link to post
Share on other sites
16 hours ago, hypird said:

No it specifically said mygnrforum.com is known to have data breach. It didn't warn me about my pasword or username, it said this site has had databreach. My email is not found in those databases

With respect, that is not what the tool does. From the link you posted:

Quote

Whenever you sign in to a site, Password Checkup will trigger a warning if the username and password you use is one of over 4 billion credentials that Google knows to be unsafe.

It's only checking the credentials you're using on a website, not the website itself.

To demonstrate, I tried logging in here with "highvoltage/password123" (something known to be unsafe). Here is the error it throws up:

image.png.d305e057557c5968ae8ec764bca0dd25.png

It does say "mygnrforum.com" in the error - but the error itself references an unsafe password, not an unsafe website. I can see why you would be confused.

Your email address might not appear in the databases, but I would hazard a guess your password does if you check it here: https://haveibeenpwned.com/Passwords

  • Like 1
  • Thanks 1

Share this post


Link to post
Share on other sites

Every time I sign in or change my password it says "Connections are not secure and logins can be compromised." Looks like the forum is unsafe.

Share this post


Link to post
Share on other sites
1 hour ago, 31illusions said:

Every time I sign in or change my password it says "Connections are not secure and logins can be compromised." Looks like the forum is unsafe.

It's safe, though we really need to add an SSL certificate at the back end. This will allow access to the site over https:// and give us the "secure connections" green tick.

These generally cost money, but Invision might give us one for free if we open a ticket via the client area @downzy. Seems like it's free on the 200 user plan and above.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×