Announcement

JeepGuy · 06-10-2022, 08:17 AM

same.
A timely reminder to change our passwords here, and anywhere else you used the same password

Colrose · 06-10-2022, 12:21 PM

I got one too.

Daniel150 · 06-10-2022, 06:50 PM

Stupid question, how do I update my password and email on here?

Daniel150 · 06-10-2022, 06:59 PM

It’s ok, I found it. Sorry just a bit hard on the mobile

Jurassic · 06-10-2022, 07:07 PM

I'm trying to update my password. User settings >>account>> Old Password / new password>>save settings.
Keep getting : Sorry, you are not authorized to view this page. Error.

gunda · 07-10-2022, 08:24 AM

You can change your email and p/w, but it sounds like Pradopoint has been hacked, and if so it will simply happen again. If one wants to continue using PP, then an email and p/w combo that are only used here and nowhere else is the only answer that I can think of.

prado-admin · 07-10-2022, 06:34 PM

As far as I'm aware the site has not been hacked. There was an incident 12-18 months ago when the database was deleted remotely via an exploit but there was no evidence any data had been copied or downloaded. As Gunda said, like any site it's best to have unique combinations specific to that site. Passwords are also encrypted in the database - no plain text passwords are stored.

gunda · 07-10-2022, 07:57 PM

Originally posted by prado-admin View Post

As far as I'm aware the site has not been hacked. There was an incident 12-18 months ago when the database was deleted remotely via an exploit but there was no evidence any data had been copied or downloaded. As Gunda said, like any site it's best to have unique combinations specific to that site. Passwords are also encrypted in the database - no plain text passwords are stored.

So how come Andyfive, JeepGuy and Colrose all got an email from LastPass saying that their user data had been compromised?

To those three: What did the instructions say when you logged into your Lastpass accouint?

Piggy · 08-10-2022, 01:27 AM

Originally posted by gunda View Post

So how come Andyfive, JeepGuy and Colrose all got an email from LastPass saying that their user data had been compromised?

To those three: What did the instructions say when you logged into your Lastpass account?

You would have to ask Lastpass that question, But most likely as dark web monitoring is a "Pay to use" feature with Lastpass, those particular users would have to be subscribed to access that feature to be alerted via email.. (If they are not subscribed to the Premium or higher, then one would question, Is the actual email from lastpass or if its a scam on Lastpass's behalf?)

Perhaps at the same time ask them about how about 8 weeks ago, LastPass itself has hacked and the hacker had access to their systems for 4 days.. One wonders if these emails that are sent out are a way of "gaining" paying customers to their higher-priced subscriptions sometimes..... Lots of questions....

73% of LastPass reviews on Trust Pilot are 1 star!!!!!. Ouch!

Daniel150 · 08-10-2022, 06:13 AM

This may shed some light on where the details came from…
I read an article last night on news.com that Optus customers with iPhones have possibly had their saved passwords leaked as well.
Prado point was one of three of my saved passwords that was compromised. I was a Optus customer with an iPhone.
Potentially others effected by this are in a similar position? That would mean the fault doesn’t lie with a pradopoint leak.

gunda · 08-10-2022, 08:07 AM

So things are more murky that the initial reports indicated. Thanks for those additional reports. The iPhone thing is surprising, as it's supposed to be the more secure mobile OS, although not impregnible.

Andyfive · 08-10-2022, 04:59 PM

Originally posted by gunda View Post

So how come Andyfive, JeepGuy and Colrose all got an email from LastPass saying that their user data had been compromised?

To those three: What did the instructions say when you logged into your Lastpass accouint?

Lastpass message:

Dark web alert
5 October 2022

Breached site
pradopoint.com.au

Your email address for this site

[email protected]

Compromised data
Emails, Passwords, Usernames, IP Addresses

Change your password for this site immediately. If you use the same password elsewhere, change it there, too.

prado-admin · 09-10-2022, 11:18 AM

We haven't had a breach. I've checked throughly through access logs and the filesystem. Part of what I do for a living involves repairing sites that have been hacked or breached so I'm familiar with the signs and trails left behind. Some of these apps will indicate that the username and password combination you use for a site (like Pradopoint) is the same used on others where that data has been found online. It doesn't mean the source of the data was actually Pradopoint.

prado-admin · 09-10-2022, 11:21 AM

Also, if you're not aware of the site, go to https://haveibeenpwned.com and enter your email address to see what breaches your data has been involved in.

Announcement

New alert: Dark Web Monitoring - Breach Alert pradopoint

New alert: Dark Web Monitoring - Breach Alert pradopoint

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment