Please feel free to share. “The Little Drummer Boy Project”
I am guessing a few others use violinlab.com since I heard about that place from here, so I am posting the information here so you can address any security issues necessary.
Earlier today violinlab.com was hacked. The result was a long list of usernames and clear text passwords ended up being mailed out to many users on the site, and most likely the hackers also have that information.
ViolinLab posted that credit card information was contained on another system by another company and that was not breeched.
The hackers would have had access to any other information you had in your profile, such as email address, address, phone number.
They initially shut down just the password system, but as of this point in time the full system is shut down.
If for some reason you use the same password on other sites, you should change it now. (And probably look in to a password management system and use different passwords for other sites).
I would highly recommend changing your password as soon as the site comes back up. I am hoping they when they bring it back up they bring it back up with all accounts locked so we have to request a password reset.
Thanks Sasha. I just came from there first and discovered the hack. I received an email with a long list of everyone's personal into including passwords. Though I would NEVER use that data for anything nefarious I can't be sure no one else would.
Beth is one of the warmest,most friendly and informative people in the violin web world. Pierre is also in that bunch. I feel bad that such a thing has happened.
I guess the next thing I'm going to do is change a bunch pf passwords, although I make it a point to never use the same passwords for any of my financial online transactions.
Hopefully VL will be back up and running soon once they clear the breach. Beth if you're reading this, my heart goes out to you. Sorry this happened to you. I feel confident that members of VL will all be back to the site soon as the problems are dealt with.
VL is back up and running again. The perpetrator exploited the mail forgotten password feature. Problem has been corrected by initiating a password code. No more passwords sent through email.
The sad thing is the breach was the result of generosity. Beth allowed someone to have a temporary password to "look around". The first thing they did exploit the password feature and download all of her videos. I hope we don't see them for sale in China.