USPSA Website hacked and PWs/Emails compromised

[Slawburger]

The member support section of the USPSA site has been down for a couple days. I've been trying to get my login/password changed.

Noticed the same thing. Kind of hard to change your password if the Personal Profile section is down.

 

[rhino]

I still haven't received the password reset so I can login to the site.

 

[Slawburger]

Saw something on another board that said USPSA was hacked a year ago as well.

 

[bwframe]

I need to get my login email changed so I can block the incoming phishing/spam messages. I don't want to do that until I'm sure the new email address USPSA will have for me is in place and working, so I do not miss any correspondence.

 

[Friction]

Just an FYI, LifeLock picked up the compromised list circulating on hacker websites and sent an alert based on the email addressed used.
The passwords on the hacker exchange are now encrypted, ironically, by the guy selling them.

 

[rhino]

Just an FYI, LifeLock picked up the compromised list circulating on hacker websites and sent an alert based on the email addressed used.
The passwords on the hacker exchange are now encrypted, ironically, by the guy selling them.

That's interesting. [STRIKE]I did not get a notice from Lifelock about it.[/STRIKE] CORRECTTION: I did receive the alert!

It's good to know that the thief is practicing responsible thievery by encrypting the passwords.

 

[rvb]

Some solid, transparent communication from HQ on the matter.

http://www.uspsa.org/Website Breach.pdf

-rvb

 

[birdo]

USPSA should be pushing that information out to membership, actively, not just posting it on their site for visitors to see....

They need to consult a security pro here, and fortify their response strategy. Before it starts costing them money.