[WARNING: Scam site]Found a site which is looks just like SF site, and we are also its members??

Discussion in 'Site Feedback' started by sweetpea, Apr 5, 2016.

  1. sweetpea Valued Senior Member

    Messages:
    1,329
    The site below calls itself Sarahdream.com. Yet, it seems to have us all as members of it too!
    http://www.sarahdream.com/
    Mods, got any idea what this is about?
     
  2. Guest Guest Advertisement



    to hide all adverts.
  3. Magical Realist Valued Senior Member

    Messages:
    16,608
    OMG! Proof of the Multiverse!
     
  4. Guest Guest Advertisement



    to hide all adverts.
  5. krash661 [MK6] transitioning scifi to reality Valued Senior Member

    Messages:
    2,973
    yes-yes--WHAT THE FFUCK???
    i was also able to login that site, and everything here, is there. should any of us be worried??
     
  6. Guest Guest Advertisement



    to hide all adverts.
  7. billvon Valued Senior Member

    Messages:
    21,635
    It's a clone site; it's the forum version of the common trojan horse attack.
    So they now have your login info. Which is the main reason people create sites like that.
     
    krash661 likes this.
  8. Bells Staff Member

    Messages:
    24,270
    I would suggest you change your password to this site, ie sciforums as quickly as possible if you logged into that site.
     
    cluelusshusbund and krash661 like this.
  9. Kittamaru Ashes to ashes, dust to dust. Adieu, Sciforums. Valued Senior Member

    Messages:
    13,938

    Please Register or Log in to view the hidden image!



    Hm... some Panamanian entity it seems...

    Not to sound paranoid but, this reeks of a database clone. How that would have been accomplished, I can only speculate.
     
    krash661 likes this.
  10. cluelusshusbund + Public Dilemma + Valued Senior Member

    Messages:
    7,985
    Does that mean that sombody wit the necessary info coud have been hacked;;; if so... i sure hope it dont mean that my (embarrassin) PM's coud have been read.... or get posted

    Please Register or Log in to view the hidden image!

     
    Magical Realist likes this.
  11. James R Just this guy, you know? Staff Member

    Messages:
    39,397
    Do NOT log in there. These people are most likely trying to get your login details.
     
    cluelusshusbund likes this.
  12. sweetpea Valued Senior Member

    Messages:
    1,329
    I was at once suspicious and never tried to login. But, lets hope some sock puppets here log in there.
     
  13. krash661 [MK6] transitioning scifi to reality Valued Senior Member

    Messages:
    2,973
    if this is a database clone then would they not already have any information that was submitted here from everyone here?--think about it.
     
  14. billvon Valued Senior Member

    Messages:
    21,635
    No. A clone can be created from the purely visible aspects of a website; there are programs that can do that. Such a clone will not contain any personal information that is not publicly accessible.
     
  15. exchemist Valued Senior Member

    Messages:
    12,451
    I presume that if they are trying to learn your personal login information then ANY login response you might make would give access. Is that right?

    .....In which case, you could bugger them up a bit by logging in with bum details.

    Please Register or Log in to view the hidden image!



    P.S. I wonder if these messages, about their fraudulence, are being faithfully reproduced on their fake site................
     
  16. billvon Valued Senior Member

    Messages:
    21,635
    Perhaps. It would be up to the "designer" of the website how the system reacted to login attempts. About all you can say about it with certainty is that it won't work _right_ i.e. it doesn't know your actual username/password so it won't allow validated users in and reject invalid users. It might accept everyone, in which case it might even allow you to post on the fake site with that name.

    It also might reject everyone. From a hacker perspective this is more useful, since most people keep at most about half a dozen passwords and use them for more than one site. By rejecting everyone, the site could encourage people to try their other passwords. Now the hacker has your username and several of your passwords. And if one of the passwords you tried is the password you also use for banking . . . .
     
  17. krash661 [MK6] transitioning scifi to reality Valued Senior Member

    Messages:
    2,973
    it is-- everything that occurs here or is submitted here is being transferred to that site from moment to moment-- go look.

    Please Register or Log in to view the hidden image!

    you can read everything without logging in there.
     
  18. krash661 [MK6] transitioning scifi to reality Valued Senior Member

    Messages:
    2,973
  19. billvon Valued Senior Member

    Messages:
    21,635
    I just tried using a fake name/password and it rejected it. From Krash we know it accepts valid logons. So it may be a "true" clone - a copy someone made of the database itself, rather than a surface copy.
     
    krash661 likes this.
  20. exchemist Valued Senior Member

    Messages:
    12,451
    Yes that makes sense, thanks. I shall steer clear of this, then.
     
  21. krash661 [MK6] transitioning scifi to reality Valued Senior Member

    Messages:
    2,973
    another crazy thing-- my old password that worked before(on that site) now does not work there. does that mean my new password was transferred to that site since everything is being transferred there-- something to think about.
     
  22. cluelusshusbund + Public Dilemma + Valued Senior Member

    Messages:
    7,985
    Thanks... beter safe than sorry.!!!
     
  23. exchemist Valued Senior Member

    Messages:
    12,451
    No I think it means Billvon's explanation is correct, i.e. they want to get you to try all your passwords, so that they can have a pop at your bank account with each one of them in turn!!
     

Share This Page