Heads up.
Tapestries (probably through its forum) was breached for emails *and passwords.* If you use you Tapestries password anywhere else, change it everywhere, *NOW*.
Source: the recent "Cit0day" leak, a leak from a black-market repository of stolen emails and passwords. See https://www.troyhunt.com/inside-the-cit0day-breach-collection/ for a primer. The Tapestries domain is in the table of contents.
Boost for visibility please.
@zebratron2084 If you're still using that password anywhere at all, I'd suggest to go and change it. :)
No need to be on anyone's radar specifically these days. This kind of operation is highly automated and automatically scans the Internet for insufficiently secured systems. My own tiny server sees dozens of attempts per hour. It's a scary world out there.
@balinares Nah, I filtered that one out ages ago, in favor of something far more snarky. :)
@balinares It looks like this is the forums, not the MUCK itself, but it's probably still a good idea to change passwords.
@kauko @balinares OK, that's a relief. I never touched the forums. Still gonna change some passwords...
@kauko I understand Tapestries uses MUCK credentials for its forum, so not using the forum may not be enough to save you. :/
@balinares Doesn't look like it to me, glancing at the forum login/registration pages. My login doesn't work, reg is purely new account
@balinares That is /good to know/. We fortunately don't use that password anywhere else, but /whoof/. *goes to change Tapestries password*
@balinares This would have been an utter disaster for me four years ago when I was using Kincaid's password for absolutely everything. :)
Yikes nonetheless, though. Still a scary though that they'd even be on any hacker's radar.