-
Happy Birthday ICMag! Been 20 years since Gypsy Nirvana created the forum! We are celebrating with a 4/20 Giveaway and by launching a new Patreon tier called "420club". You can read more here.
-
Important notice: ICMag's T.O.U. has been updated. Please review it here. For your convenience, it is also available in the main forum menu, under 'Quick Links"!
browser window says not secure
- Thread starter chuckyoufarley
- Start date
Nope. No spyware on this computer. Icmag password is singular for only this site, not used elsewhere. Good security here.
No other issues, no other emails with passwords.
The criminals email is just a form email with a couple spots where they change dates, etc. If they had actual spyware, they would not have all the imbecilic accusations that made me laugh.
Would place a bet that many others have got the same email - it could freak somebody out that had worries.
Somebody who previously did IT work on the site could be a culprit.
AgentPothead
Just this guy, ya know?
Realistically the odds are that you used your password on another website. If the icmag database had gotten hit we all would be getting the phishing emails with our icmag passwords.
You may be right. If nobody else here has gotten the same email, then it may be something where a password was created & whatever site is not being used. Hope nobody else gets those emails - the text would make us l laugh.
Unsafe to login
Unsafe to login
Quickly
SSL is used to encrypt what you type in and then is decrypted at the server. Nothing is sent as plain text. There are many levels where things can go wrong.
Aside from TLS (Transport Layer Security) protocal versions, there are also ciphers used to do the actual encryption. For instance, most modern android phones run v7 - v10 of Android OS. Version 4 is a problem, it uses hacked ciphers that had to be disabled. If your modern browser finds these ciphers it may not connect securely. If you ax those older ciphers you lose Android 4.0 and lower versions.
Why is this important?
It's unsafe to log in if you don't have a secure connection. Your login details are being sent as plain text and it's fairly trivial to sniff those out with a man in the middle attack. If you have the option to create an exception in your browser and enable SSL you should do that. Our web dev team knows if they log into a site without security accidentally those passwords need to be changed immediately.
Unsafe to login
Quickly
SSL is used to encrypt what you type in and then is decrypted at the server. Nothing is sent as plain text. There are many levels where things can go wrong.
Aside from TLS (Transport Layer Security) protocal versions, there are also ciphers used to do the actual encryption. For instance, most modern android phones run v7 - v10 of Android OS. Version 4 is a problem, it uses hacked ciphers that had to be disabled. If your modern browser finds these ciphers it may not connect securely. If you ax those older ciphers you lose Android 4.0 and lower versions.
Why is this important?
It's unsafe to log in if you don't have a secure connection. Your login details are being sent as plain text and it's fairly trivial to sniff those out with a man in the middle attack. If you have the option to create an exception in your browser and enable SSL you should do that. Our web dev team knows if they log into a site without security accidentally those passwords need to be changed immediately.
