Heads up.
Tapestries (probably through its forum) was breached for emails *and passwords.* If you use you Tapestries password anywhere else, change it everywhere, *NOW*.
Source: the recent "Cit0day" leak, a leak from a black-market repository of stolen emails and passwords. See https://www.troyhunt.com/inside-the-cit0day-breach-collection/ for a primer. The Tapestries domain is in the table of contents.
Boost for visibility please.
@zebratron2084 If you're still using that password anywhere at all, I'd suggest to go and change it. :)
No need to be on anyone's radar specifically these days. This kind of operation is highly automated and automatically scans the Internet for insufficiently secured systems. My own tiny server sees dozens of attempts per hour. It's a scary world out there.
@balinares Nah, I filtered that one out ages ago, in favor of something far more snarky. :)
@kauko @balinares OK, that's a relief. I never touched the forums. Still gonna change some passwords...
@kauko I understand Tapestries uses MUCK credentials for its forum, so not using the forum may not be enough to save you. :/
@balinares That is /good to know/. We fortunately don't use that password anywhere else, but /whoof/. *goes to change Tapestries password*
@balinares This would have been an utter disaster for me four years ago when I was using Kincaid's password for absolutely everything. :)
Yikes nonetheless, though. Still a scary though that they'd even be on any hacker's radar.