|
Post by Lord Hayati on Jul 20, 2022 14:30:23 GMT -5
www.jellyneo.net/?comments=14086THERES NOTHING YOU CAN DO AT THE MOMENT, EXCEPT SECURING YOUR NON-NEOPETS PASSWORDS. THE WHOLE DATABASE IS FOR SALE. 4 BITCOINS. WITH LIVE ACCESS. this means they get to see EVERYTHING. WITH UPDATES.
|
|
|
Post by doctortomoe on Jul 20, 2022 15:30:13 GMT -5
Man, you'd think they'd be quicker to stop something like this.
|
|
|
Post by Carolyn on Jul 20, 2022 16:28:19 GMT -5
Eeeee I am not happy right now. When I tried to change my PW here I had a redirect warning? @_@;; Ahhh
|
|
|
Post by Thorn on Jul 20, 2022 17:34:43 GMT -5
This is seriously scary stuff! I'm pretty sure I changed the last of the sites that share my old neopets passwords recently, but I'll have another check.
|
|
|
Post by Breakingchains on Jul 20, 2022 21:15:55 GMT -5
Aside from the obvious step of using different passwords everywhere, my suggestion as usual is to lock down your e-mail and make sure it has 2FA if you can. Got my main e-mail nabbed in an unrelated breach a while back and thought I was gonna be putting out fires forever. Fortunately my Neopets e-mail has been completely separate from the rest of my digital life for years so basically it's completely quarantined, even if someone found that e-mail via this breach and got into it, they'd be hitting a dead end.
If you're looking for a password manager, I can vouch for Bitwarden. It's open-source and doesn't make you pay for any of the features.
|
|
|
Post by Ian Wolf-Park on Jul 20, 2022 22:18:47 GMT -5
Quick update: TNT has released a statement (viewable on Jellyneo) confirming the breach and they strongly recommend changing passwords, although they have not confirmed that the breach has been patched. Change your passwords at your own peril.
|
|
|
Post by Blueysicle on Jul 20, 2022 22:21:13 GMT -5
TNT just updated on their Neoboard. They don't actually say if things have been patched on their end, but they did say to update you passwords, which is what I'm inclined to do for the moment. Just be prepared to have to change it again soon if and when more info about the situation is released. (EDIT: Yeah, what Ian said. ) And at risk of coming across as some old geezer that doesn't trust or understand modern technology, I can't help but feel like services that let you manage and store all your passwords is like putting all your eggs in one basket and is just one breach away from a massive disaster. Pencil and paper is my way to go, personally.
|
|
|
Post by downrightdude on Jul 20, 2022 23:56:19 GMT -5
I've changed my Neo password, since I don't use it anywhere else. This is a seriously scary time! *hugs everyone*
|
|
|
Post by Killix on Jul 21, 2022 8:16:50 GMT -5
Well, if they say it's something we should do, then ok. Logged in for the first time in years and changed my password on Neopets.
|
|
|
Post by CrimsonShroud on Jul 22, 2022 12:04:02 GMT -5
Great. Another breach. As many of us may be aware, this has happened before in the past, but this looks like a real serious one to date. I'm a bit hesitant to go there until I know it has been patched.
|
|
|
Post by Twillie on Aug 1, 2022 17:38:26 GMT -5
TNT has made an announcement on their social media regarding the breach ( Their Twitter thread).
The tldr; is that they've taken steps to shut down access to the affected systems and haven't seen unauthorized activity since, although they are still investigating the incident with experts. In the meantime, users are being forced to change their password at login, with the reset link being sent to the email address connected to your account.
There are currently server issues with too many people trying to change their password at once, with some people even needing to reset it multiple times. It may be advisable to wait until this activity calms down before changing your own password, but otherwise, it is strongly recommended to update it as soon as it's feasible.
|
|
|
Post by Breakingchains on Aug 1, 2022 23:28:21 GMT -5
Good to get news. I went to check a little while ago and was able to change mine without issue though I imagine there might be more glitches/sluggishness during peak hours.
EDIT: Oh thank god they said they're working on adding 2FA. I've been wanting that for yeaaaaaars it would have made the days of ridiculous scams and cracked accounts so much safer. Better late than never?
|
|
|
Post by doctortomoe on Aug 2, 2022 0:14:47 GMT -5
So is everything still a mess, I dare not go and try until the tsunami dies down.
|
|
|
Post by downrightdude on Aug 2, 2022 0:36:17 GMT -5
I've been able to say on without getting logged out.
Hopefully things get better tomorrow.
|
|
|
Post by doctortomoe on Aug 2, 2022 6:35:32 GMT -5
Okay, got my main and one of my sides back online, got an error on the 2nd, will try tomorrow
|
|