I am posting this to UKE TALK for highest visibility since that seems to be the most popular section of UU. Moderators feel free to move this message if another section is better served by this content.
WARNING!
I received an email from Ryan this morning:
Possible password exploit may have gotten into the UU system as per below.
The login box looks like this,and is a sort of pop-up window and appears regardless if your browser has a pop-up blocker turned on,
DO NOT FILL IN your credentials, it clearly says it is NOT going to be sent to UU. I have emailed this picture and details to Ryan just now.
Also, if you have lastpass, you need to update to the latest version and for each web site that has saved passwords, check the box to select NEVER AUTOFILL, and make sure that the box for AUTOLOGIN is NOT checked.
This possible 3rd-party may have captured my UU+ password, which is the lessons part of UU, and I am trying to get it reset.
As a precautionary measure, I have changed my password for the forums section just now, which if you have not done in a while, is a good thing to consider, also NEVER used the SAME password on multiple web sites, for if one of them is hacked, and they have your account info, they can easily now hack in to another site using your same credentials, and sites are hacked EVERY single day.
See this link for more info about the possible Lastpass exploit that is currently a problem:
http://www.csoonline.com/article/302...portunity.html
WARNING!
I received an email from Ryan this morning:
ALoha,
Sorry for the bad news on a Sunday (an awesome day to practice the ukulele).
Our hosting provider took our site offline temporarily due to security concerns. We're looking into the issue now and we hope to have the site back online as soon as possible.
Thank you for your patience.
-Ryan
==============================================
You are receiving this email because you have subscribed to UU+ or a Ukulele Underground mailing list.
Possible password exploit may have gotten into the UU system as per below.
The login box looks like this,and is a sort of pop-up window and appears regardless if your browser has a pop-up blocker turned on,
DO NOT FILL IN your credentials, it clearly says it is NOT going to be sent to UU. I have emailed this picture and details to Ryan just now.
Also, if you have lastpass, you need to update to the latest version and for each web site that has saved passwords, check the box to select NEVER AUTOFILL, and make sure that the box for AUTOLOGIN is NOT checked.
This possible 3rd-party may have captured my UU+ password, which is the lessons part of UU, and I am trying to get it reset.
As a precautionary measure, I have changed my password for the forums section just now, which if you have not done in a while, is a good thing to consider, also NEVER used the SAME password on multiple web sites, for if one of them is hacked, and they have your account info, they can easily now hack in to another site using your same credentials, and sites are hacked EVERY single day.
See this link for more info about the possible Lastpass exploit that is currently a problem:
http://www.csoonline.com/article/302...portunity.html