Harng Goh wrote:That's so clever, in a wow-that's-obvious-you-stupid-users-die-stupid-spam-bot-die sort of way.
parawolf wrote:From another forum i'm a member of, they just had a SPAM bot attack on their userbase.
It was attempting to logon as each user of this forum and send a private message containing spam from their account. The bot was attempting to logon using each user's username as their password.
Apparently this web forum has dozens of members that use this practice of using their username as their password, so the bot was successful in a number of cases and 100's of PMs were sent.
Please confirm that your password is not the same as your username for the security of your account, and the viability of the BV Forums. We are all aware of the work that Frosty does in order to prevent SPAM bots from flooding the forums and rendering them useless, so please, if you currently have your username as your password, change it now.
B1k3B0y wrote:You could run a script over this site yourself to identify the genuises that have username = password. Then send them a carefully worded email asking them to change their password. There's no law against pen testing your own site if the site admin says go ahead.
Users browsing this forum: No registered users and 1 guest