China trying to hack my Casinomeister account

[ianbeale]

Sorry if this is the wrong place but it is likely to get more views here.

CM has kindly notified me that someone else tried to access my account here 5 times.

The IP tracked is 183.222.158.137 which when traced is a Chinese mobile phone account.

Be wary

 

[Nate]

Happens from time to time on here. Its a Bot.

Ill report the post so CM can block the IP.

Nate

 

[Webzcas]

This is pretty much a daily occurence, not just here with the forum accounts, but with all sites on the internet. These attempts are 99.9% of the time bots, using dictionary brute force attacks on accounts.

The forum software at Casinomeister is configured so that an account is locked out temporarily after five unsuccessful attempts to sign in, in addition to the automated mail alert sent to the forum account owner's email address. As is the case here

This just reaffirms that you should all use strong passwords, using a combination of letters, numbers and symbols. As well as using upper and lower case letters. Furthermore, your password for here should be unique to your account here on CM and not used elsewhere. Finally do not base your password on a word that can be found in a dictionary.

The above is all good password management and should be practiced anywhere you have an account online on any site.

I keep all my passwords in a notepad file on my PCs' at home. If I got mugged in the street and a gun put to my head, I would still be unable to tell anyone any of my passwords.

 

[naththo]

Yeah my bitdefender blocks the ip sometimes daily anywhere. Even previously with Norton Security same thing it keep blocking some ip every day. Glad I have 3 firewalls at the same time. First through modem, then through Windows firewall and through Bitdefender firewall. LOL

 

[The Dude]

Like webzcas mentioned - it's ongoing. You should make sure you have a strong password - if so, you have nothing to fear.

Rules of thumb:

• always use a combination of lower/upper case letters

• use a few numbers

• throw in a special ch@racter or two

• make sure it's at least eight characters in length

Here is a pretty good tester to see how strong your passwords are:

You do not have permission to view link Log in or register now.

BTW - according to that link, the password for this server would take a computer about 6 billion years to crack.

 

[The Dude]

LOL - the password for GG's server would take a desktop computer a quadrillion years to crack. Yo China - knock yerself out!

 

[Tirilej]

I tested mine I have for Facebook. 15 hours

Maybe it's time I start taking this serious.

 

[dreamguardian1]

Like webzcas mentioned - it's ongoing. You should make sure you have a strong password - if so, you have nothing to fear.

Rules of thumb:

• always use a combination of lower/upper case letters

• use a few numbers

• throw in a special ch@racter or two

• make sure it's at least eight characters in length

Here is a pretty good tester to see how strong your passwords are:

You do not have permission to view link Log in or register now.

BTW - according to that link, the password for this server would take a computer about 6 billion years to crack.

I will update my password in another 14 years unless it gets hacked sooner, which someone managed to do to my email after the site got hacked last time so i updated all my passwords and i just checked it with the link he provided

"it would take a desktop PC about 15 Years to crack your password"

 

[amourgirl]

11 minutes

Jesus, better have a rethink.

Thanks for the link

 

[Casino2014man]

It would take a desktop PC about
26 million years
to crack your password

 

[dave1888]

only "It would take a desktop PC about
275 days
to crack your password" Probably should be making my passwords more solid. Not the worst result though.

Revamped this one and this what is said It would take a desktop PC about
465 million years
to crack your password

 

[mcgameboy]

Old password: 22 minutes

New password: 1 million years

 

[3Dice]

Be wary with that analysis tools guys, there are so many different hacking methods out there ..
It all comes down to entropy .. here's an insightfull image ..



Cheers,

Enzo

 

[richie1913]

Old password 11 minutes
my facebook password was 63 million years
my new password 71 quadrillion years

 

[Smokeycasino]

Got a message two days ago.
The person trying to log into your account had the following IP address: 185.36.100.145

So I updated password:
The password I had.
It would take a desktop PC about 11 minutes to crack your password


New password 15 hours :/

 

[babyjoker]

New password 8 quattuortrigintillion years whatever that is lol

Imagine if that site actually was a hub setup from pro hackers, steering you towards the best way to get cracked maybe, always be vigilant on the internet, one look at the deep web show's the scale of fraud and hacking and they love hiding in plain site.

 

[Zabier]

When you said China was attempting to hack your CM account I thought "what? The government?". Haha.

It's a massive irritation that these scum bags exist. When busted it is usually that they are simply doing it for sport as well with no sinister motivation behind it which makes it all the more agitating. It's a shame that we have to stay on top of our passwords but such is the world we live in. I use LastPass but not sure that is even flawless now.

 

[The Dude]

I've been reading up on this on some webmaster forums and it's a widespread problem. And just in the past couple of weeks, a number of forums (like ours) are seeing an increase of these attacks.

One of the issues is that the usernames are viewable by the public either in the members' list or via threads and postings. So there is no getting around bots that scrape sites for the forum members' names. There are bots with thousands upon thousands of these user names and hit every forum they can find. The good thing is that there is a fail safe mechanism that blocks a user's IP for 15 minutes if there are 5 bad attempts. This pretty much negates anything the bot can do.

The thing is, it's a nuisance. No one like getting these emails, it's like you are being personally attacked. In fact, we've had a couple of members wanting me to close their accounts because they were afraid that they were being personally targeted. I can assure you - you are not. And as long as you have a decent password, you are good to go.

We may have a solution which I will probably implement next week. You will be required to log in with your email address instead of your username. Since your emails are hidden from public view, we should see these attacks drop off.

I'll be keeping you updated here.

 

[Valhalla]

Ha

Just tested my password using that link from the previous page Bryan. 58 years to crack my Casinomeister account, which is about how long PlayTech casinos take to pay out a progressive. So it's safe enough for me

Also tested my online banking password out of curiosity - 425 quintillion years. Pretty safe.

 

[goatwack]

Yeah my password strength according to that website would take a PC 55 billion years to crack.

So in essence the duration of waiting for next payday when your gaming budget is gone

 

[weesie]

I just so happened to log in this morning at about 2:30 am or so.

It looked like "stormtrooper31" had a ball starting threads. I didn't click on any of them, with their "chinese or japanese" language.

Nice work dude........... got your ass kicked out pronto!

 

[azzagirt]

Chinese, japanese, money please

about an hour ago I saw all those crazy characters and I did open one. Should I be worried ? I then closed the the site. Just logged back in now and all good.

 

[goatwack]

I just so happened to log in this morning at about 2:30 am or so.

It looked like "stormtrooper31" had a ball starting threads. I didn't click on any of them, with their "chinese or japanese" language.

Nice work dude........... got your ass kicked out pronto!

Yes it did appear like stormtrooper31 had a hoot. Or should that be 'stolmtlooper31'?

The site did have a very Chinese vibe to it earlier today, it was ridiculous. Makes one wonder what the point of it was considering that this is an English- speaking site. What a moronic thing to do. sorry I meant molonic

 

[dunover]

He soon flucked-off though. He/she has obviously never tried beer or sex.

 

[PaaskeDenmark]

I got bit worried so decided to add bit more digits and letters etc and extend my password to make it more safe for couple places

877 quadrillion nonagintillion years

 

[goatwack]

I got bit worried so decided to add bit more digits and letters etc and extend my password to make it more safe for couple places

877 quadrillion nonagintillion years

Dunno, the way these clowns are hammering this board I don't think even that is enough. Better add a couple of zeroes on that number to be sure !

 

[dunover]

I got bit worried so decided to add bit more digits and letters etc and extend my password to make it more safe for couple places

877 quadrillion nonagintillion years

Assuming:

A. In those years computer processing speed remains static.
B. Despite your 100 billion bolts on the front door, the back door isn't entered and the password retrieved by a keylogger/Trojan in which case reduce that time to 0.000000000000000000001 of a second....

 

[The Dude]

I think we've fixed this. We have "Human Verification" in place when you log in, and the reCaptcha doesn't appear until you've screwed up at least two times. So if a bot hits the page it won't go anywhere until it can get through reCaptcha - which I doubt it can. If it does, then you'll get the warning again.

Hopefully this worked.