Membership is FREE – with unlimited access to all features, tools, and discussions. Premium accounts get benefits like banner ads and newsletter exposure. ✅ Signature links are now free for all. 🚫 No AI-generated (LLM) posts allowed. Share your own thoughts and experience — accounts may be terminated for violations.
NameDrive login problems ?
- Thread starter domaingenius
- Start date
- Status
- Joined
- Aug 22, 2005
- Messages
- 556
- Reaction score
- 1
Equalizer,
As I just posted before you, SS numbers were not taken and I believe nobody is taking it lightly. We have had several hundred emails to our support today which we are dealing with on a one to one basis and we as a company are certainly not taking this lightly.
Any company operating online operates under these risks and I am shocked that it has happened to us, but nobody is immune, as recent attacks on Godaddy and US banks have proved.
We informed the accounts directly affected within 60 minutes of us having this information.
Ed
As I just posted before you, SS numbers were not taken and I believe nobody is taking it lightly. We have had several hundred emails to our support today which we are dealing with on a one to one basis and we as a company are certainly not taking this lightly.
Any company operating online operates under these risks and I am shocked that it has happened to us, but nobody is immune, as recent attacks on Godaddy and US banks have proved.
We informed the accounts directly affected within 60 minutes of us having this information.
Ed
- Joined
- Jun 23, 2004
- Messages
- 109
- Reaction score
- 0
Any company?
I understand the passwords were not encrypted ? and saved as plain text...and the information was posted on a hacker's forum?
is that correct.?
How does someone just steals 1 % of the info?
I understand the passwords were not encrypted ? and saved as plain text...and the information was posted on a hacker's forum?
is that correct.?
How does someone just steals 1 % of the info?
- Joined
- Nov 16, 2004
- Messages
- 8
- Reaction score
- 0
NameDrive did NOT properly store passwords in their database. This is made evident by the fact that your reset password is [originalpassword]_[somenumbers].
If they were properly storing passwords (saving a hash and salt), they would not have been able to get your original password to generate the new password with.
Note that "encrypting" passwords is useless, because anyone who compromises the database is likely to also get the decryption keys (since the website would have access to them).
I pointed this failure out to ND and got a BS response of "we do not comment on the way we encrypt information." Anyone doing the right thing would flat out deny it, not refuse to comment. :veryangry:
If they were properly storing passwords (saving a hash and salt), they would not have been able to get your original password to generate the new password with.
Note that "encrypting" passwords is useless, because anyone who compromises the database is likely to also get the decryption keys (since the website would have access to them).
I pointed this failure out to ND and got a BS response of "we do not comment on the way we encrypt information." Anyone doing the right thing would flat out deny it, not refuse to comment. :veryangry:
- Status
Similar threads
- Article
