Jump to content



Photo

AHB user email addresses on PasteBin


37 replies to this topic

#1 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:05 PM

https://pastebin.com/qzFKW2Qj

 

Should we be concerned? I was alerted by Amazon that my email address was in the public domain so it forced a password reset, I Googled the email address myself and found this. If it's publicly accessible, it'd explain the recent influx of phishing emails, since I would imagine anyone with Google can find it.

 

Given the number of email addresses here (3804) it could very well be a dump of the AHB user database. If you use the same password for AHB as you do for other websites it would pay to be vigilant. Best wait for an Admin to confirm before jumping to conclusions though.

 

ed: I assumed these were AHB user email addresses by finding a specific few that I know to be AHBers, that doesn't mean it's all AHBers. Again, let's not jump to conclusions just yet, I just wanted to give people a heads up.


Edited by mtb, 10 April 2017 - 03:08 PM.


#2 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:13 PM

FYI I have sent a request via the website to remove the page.



#3 n87

n87

    Same as it ever was

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,301 posts
  • Joined 01-May 14

Posted 10 April 2017 - 03:14 PM

Mines not there...



#4 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:16 PM

Mines not there...

 

Can you do me a favour and check this one too? https://pastebin.com/LmdChAdM



#5 n87

n87

    Same as it ever was

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,301 posts
  • Joined 01-May 14

Posted 10 April 2017 - 03:18 PM

Can you do me a favour and check this one too? https://pastebin.com/LmdChAdM

 

not there either.

 

Thanks for the headsup regardless



#6 SBOB

SBOB

    Beer God

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,499 posts
  • Joined 23-June 14

Posted 10 April 2017 - 03:19 PM

mines not in either



#7 SBOB

SBOB

    Beer God

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,499 posts
  • Joined 23-June 14

Posted 10 April 2017 - 03:20 PM

 

ed: I assumed these were AHB user email addresses by finding a specific few that I know to be AHBers, 

 

its probably some dirty freak porn site that you all happy to have signed up for ;)


  • mtb likes this

#8 SBOB

SBOB

    Beer God

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,499 posts
  • Joined 23-June 14

Posted 10 April 2017 - 03:21 PM

actually, I find it interesting that there are no gmail addresses in there

 

 

Looks to be entirely hotmail and yahoo... and if you're using hotmail well then you probably deserve hacking and we know yahoo gets hacked all the time now (but just doesnt tell anyone)  ;)


Edited by SBOB, 10 April 2017 - 03:22 PM.


#9 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:23 PM

hey yeah, there's an interesting point. Although my address is @outlook and it is in there too. Curious that gmail is absent



#10 bradsbrew

bradsbrew

    Who's up for a pint?

  • Admin
  • 7,402 posts
  • Joined 22-May 08
  • Location:Kallangur Qld

Posted 10 April 2017 - 03:27 PM

Mines not in there, however there are alot of familiar names in there. I checked random ones in the admin cp and of the ones I tried only 1 of the 4 came up in a search.

I will have a better search this evening. I did notice that craftbrewer had a message on their website regarding a hack. That may not be the source either as I use the same email for craftbrewer and ahb (different password)

 

Security Alert

Unfortunately the craftbrewer.com.au website was a victim of a hacking attack from sources overseas recently. During this attack the hackers where able to get access to usernames/email addresses and passwords from the craftbrewer.com.au database. We strongly suggest that you change your password immediately along with any other sites that you may have used your craftbrewer.com.au password for. We can confirm no credit card information was compromised during this hack. We apologise for any inconvenience caused.



#11 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:34 PM

Interesting point Brad. The PasteBin list was posted early Feb, as did my phishing emails, so it'd be interesting to know when CB was compromised. If later than Feb 4, CB isn't the source.

It would make sense that it is though.

 

Noting also that a second list appears which contains at least one AHBer; https://pastebin.com/LmdChAdM



#12 pnorkle

pnorkle

    Partial Man

  • Members
  • PipPipPipPipPip
  • 142 posts
  • Joined 29-April 06
  • Location:Willagee, WA

Posted 10 April 2017 - 03:35 PM

I did notice that craftbrewer had a message on their website regarding a hack.

 

Security Alert

Unfortunately the craftbrewer.com.au website was a victim of a hacking attack from sources overseas recently. During this attack the hackers where able to get access to usernames/email addresses and passwords from the craftbrewer.com.au database. We strongly suggest that you change your password immediately along with any other sites that you may have used your craftbrewer.com.au password for. We can confirm no credit card information was compromised during this hack. We apologise for any inconvenience caused.

What, again?  CB Security admins need a serious kick up the ass...



#13 Bribie G

Bribie G

    Adjunct Professor

  • Pro
  • 19,453 posts
  • Joined 09-June 08
  • Location:The Misty Mountains

Posted 10 April 2017 - 03:35 PM

The vast majority are hotmail, a few live.com and I did spot a gmail.

 

Thanks for the reminder brad, I changed my CB password last year when the attack happened. I can't find the thread but when I posted that I was getting spam from unknown sources who clearly knew what I'd bought from CB the general comments on the forum from some members was that I was taking it all too seriously and take a chill pill she'll be right cobber.

 

Good that we've got members such as mtb who are on the ball.



#14 Bribie G

Bribie G

    Adjunct Professor

  • Pro
  • 19,453 posts
  • Joined 09-June 08
  • Location:The Misty Mountains

Posted 10 April 2017 - 03:37 PM

What, again?  CB Security admins need a serious kick up the ass...

Much as I love browsing and buying stuff off the CB site, it's right out of the ark and hasn't changed since John Howard was PM.



#15 TheWiggman

TheWiggman

    Haters' gonna hate

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 2,611 posts
  • Joined 17-September 13
  • Location:Corowa

Posted 10 April 2017 - 03:44 PM

I like the CB website, it hasn't been ruined by web designers catering solely for mobile users. It's good to be able to look at more than 4 products on a page consisting of only enormous buttons.

*shakes fist at pesky kids*


  • mtb likes this

#16 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 03:58 PM

Gotta agree with you on that Wiggman.

 

Bribie/mod would you mind editing the title to remove 3804 please - seeing as these aren't proven to all be AHB email addresses, i'd prefer not to concern anyone unnecessarily.



#17 n87

n87

    Same as it ever was

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,301 posts
  • Joined 01-May 14

Posted 10 April 2017 - 04:02 PM

It is likely something beer related, so while not something to panic everyone, definitely something to let everyone know.



#18 mtb

mtb

    Beer Bod

  • Pro
  • 964 posts
  • Joined 05-January 16
  • Location:Canberra, AU

Posted 10 April 2017 - 04:06 PM

FYI, the offending Pastebin lists have been removed after I sent in a request. Prompt action on their part but I can't help wonder why they permit email addresses in the first place.

 

Anyone concerned should run their email address through https://haveibeenpwned.com/, keep an eye out for suspicious phishing emails, and change your password if you are a CraftBrewer user and haven't yet done so since they were compromised.



#19 Maheel

Maheel

    Beer God

  • Members
  • PipPipPipPipPipPipPipPipPip
  • 1,788 posts
  • Joined 19-January 10
  • Location:Brisbane

Posted 10 April 2017 - 05:16 PM

i am in the 2nd one you linked (post 4)

 

wondered why i get so many junk , viagra, cash scams etc etc ....



#20 Bribie G

Bribie G

    Adjunct Professor

  • Pro
  • 19,453 posts
  • Joined 09-June 08
  • Location:The Misty Mountains

Posted 10 April 2017 - 06:08 PM

Dear Costumer you Pay Pall acount have been limmited.

 

Please click on this link to enter you're PayPal informations so we can rectify you.

 

And while wee are at it as we can't write English whey the fuk do we botther trieing to spamm you, fuck knows.





Reply to this topic