Have I been hacked here?

**Hobosapien** · 21 July 2018, 08:05

See if the email contains any identifiers in the headers etc that are found in google to identify a possible perp if it's a known scammer group. That will give you info on how likely it is to be followed up or if it may be someone trying it on.

Change all important passwords in case there's been any others key logged (or whatever mechanism they may have used for obtaining the password) from your PC or android device.

I'd expect CUK to be storing passwords in an encrypted state that can't be reversed if say their database was hacked, so hopefully you are a lone target rather than it being anything CUK and it's members have to worry about.

To avoid worrying about losing data through encryption, have a backup offline that can be used to restore data after a reformat and rebuild. Perps can't blackmail you if you don't fear losing what they threaten to take.

**Fred Bloggs** · 21 July 2018, 08:15

Thanks for thoughts. Though cannot be a key logger? I haven't keyed my PW in for ages, CUK auto logs me in. I immediately deleted the mail, but yes, passwords are changed. Edited to add - It was gmail that had automatically sent the mail to the spam folder, if that is of any significance.

**Hobosapien** · 21 July 2018, 08:38

I'm guessing that the password is stored in a cookie by the browser then for CUK site to access. Not sure how safe cookies or passwords remembered by the browser for auto completion of the login page really are from malicious sites/apps.

**Fred Bloggs** · 21 July 2018, 08:41

Originally posted by Hobosapien View Post

I'm guessing that the password is stored in a cookie by the browser then for CUK site to access. Not sure how safe cookies or passwords remembered by the browser for auto completion of the login page really are from malicious sites/apps.

That's what I am guessing at this point in time. Though the spam came to my normally used mail address so this person knows my email addy AND my CUK password. Worrying?

**NotAllThere** · 21 July 2018, 10:11

Originally posted by Hobosapien View Post

I'm guessing that the password is stored in a cookie by the browser then for CUK site to access. Not sure how safe cookies or passwords remembered by the browser for auto completion of the login page really are from malicious sites/apps.

What's stored is the MD5 hash of the logged in user's password. It's extremely difficult to recover the password from the hash alone.

I've passed Fred Blogg's concern to admin.

**Fred Bloggs** · 21 July 2018, 10:13

Originally posted by NotAllThere View Post

What's stored is the MD5 hash of the logged in user's password. It's extremely difficult to recover the password from the hash alone.

I've passed Fred Blogg's concern to admin.

Thank you.

**darrylmg** · 21 July 2018, 20:33

Originally posted by NotAllThere View Post

What's stored is the MD5 hash of the logged in user's password. It's extremely difficult to recover the password from the hash alone.

I've passed Fred Blogg's concern to admin.

Just Google "Rainbow Tables".
More than likely already been "cracked" unless you're salting them.

**Fred Bloggs** · 22 July 2018, 01:34

Originally posted by darrylmg View Post

Just Google "Rainbow Tables".
More than likely already been "cracked" unless you're salting them.

Is there any concern on my part that the person who mailed knows my email address AND my CUK password (now changed)?

**NotAllThere** · 22 July 2018, 07:53

Did you ever log on to CUK from a computer other than your own?

Have I been hacked here?