| What I'm wondering is why are people going through the trouble to hack MAL accounts? What is there to gain? |
Milennin said: What I'm wondering is why are people going through the trouble to hack MAL accounts? What is there to gain? refer to this post for the answer vvvvvvv sreimund said: To all of those who ask why someone would hack MAL: A vast majority of internet users use a password or similar passwords for other websites and services. If you don't do this then obviously you're already ahead of the program but you wouldn't be asking this question either. Do you know what internet users also like? That's right, unique handles. Once a hacker obtains one of your passwords that corresponds to your e-mail address or handle elsewhere his chances of being able to get into much more sensitive places increases a thousandfold. From there he could see emails from your bank, possible other websites you're registered to and so forth. Should your security really be lacking even more... Well you get the point. The question isn't "Why would he want my MAL account", he doesn't want it. The real question is "Is he going to access more than just my MAL account" tl;dr hackers have little to no interest in your MAL account itself, they simply want working credentials that can be used to access more important services (email, bank, etc). |
 |
Tiffanys said: tbh if someone manages to bruteforce my password, they deserve the account. There's nothing on here except my anime/manga list. Like what the heck do they think they're going to do with my account? There's no incentive to even bother hacking into accounts on this site, it's nonsensical. What are you gonna do hacker-chan, edit/delete people's lists? Not a very good use of your time... The reason you can't understand their motive is due to the limited scope of your thoughts. This is practice. MAL is a small, relatively helpless target. Such sites are where a hacker will want to trial their automated tools. edit. Vampire said: In my opinion, they should at least:
Vote Vamp' for prez'. |
FelkyrNov 6, 2017 6:41 AM
Tiffanys said: tbh if someone manages to bruteforce my password, they deserve the account. There's nothing on here except my anime/manga list. Like what the heck do they think they're going to do with my account? There's no incentive to even bother hacking into accounts on this site, it's nonsensical. What are you gonna do hacker-chan, edit/delete people's lists? Not a very good use of your time... Well if i hacked your acc. i can get ur IP using ur email address. And then there are a few things i can do like send u a virus that steals all your personal info including credit card numbers. Or if ur on a public internet Hackers can easily find ur ip and tap on all ur http infos using arp poisoning. |
| Thanks for being transparent about this matter~ |
KADAIMISE said: 1.) Apache can be as safe as any other server, I don't get why everyone is freaking out about Apache, they just have to secure it. I don't disagree with you about Apache, however, MAL has some security issues with their Apache and SSL setup.
Also, I hope that they have disabled SSL compression and session tickets and enabled OCSP stapling with a size of 128000-150000 bytes. |
| @Mautris How about BananaHello01 try combing words |
Kineta said: We have noticed an increase in brute force hacking attempts on user accounts recently. While we have increased the strength of our login system, there are limits to what we can do to combat this when users are not taking basic account security precautions themselves. Thus, we are hoping to remind everyone of some things you should be doing (both on and off MAL) to help prevent your accounts from being compromised. If you have a simple password, please update it immediately. Within the last two years, MAL has considerably increased its password requirements in attempt to help you keep your account safe. However, if you have not changed your password since 2015 or before, you may still be using a very simple password. Please update this immediately. All passwords should consist of upper and lower case letters, numbers, and special characters for maximum security. Change your passwords frequently. Even a complex password can be brute forced: it simply requires more time than a simple one. By keeping your passwords complex and changing them often, you can greatly reduce the chances of having your account stolen from you. Do not use the same passwords on many accounts across the internet. Doing so increases your risk of losing access to all of your accounts, including email, Amazon, Paypal, Facebook, blogs, etc. By having them all the same, a potential hacker only needs to compromise one site to have all of your personal information. Make sure your email address on your account is up-to-date. This ensures you can receive password resets if you forget your complex password, and that we can contact you if need be. You can change your email address here: http://myanimelist.net/editprofile.php?go=myoptions Please note that the following domains often bounce MAL's emails: http://myanimelist.net/forum/?topicid=252840 Do not enter your personal details into any form on the internet that you are not 100% aware of. In the last year or two, we've seen a dramatic increase in the rise of phishing sites, pretending to be MAL. Do not enter your login information to any site before checking your address bar to ensure you are on the correct website. Consider backing-up your list from time to time. You can use our list export feature any time from this link: http://myanimelist.net/panel.php?go=export or the "file" icon on your Anime/Manga list navigation. We will continue to do everything we can to ensure your accounts are kept safe. However, we need you to be committed to performing basic account security precautions as well; otherwise, everything we do will only be partially effective. And for those who already are aware of, and practising, the above—have yourself a cookie ;) Thanks for update |
| Have Great Day =) Animekid3  |
on 
Tiffanys said: tbh if someone manages to bruteforce my password, they deserve the account. There's nothing on here except my anime/manga list. Like what the heck do they think they're going to do with my account? There's no incentive to even bother hacking into accounts on this site, it's nonsensical. What are you gonna do hacker-chan, edit/delete people's lists? Not a very good use of your time... Well ur email is the only real problem. I can track ur email. Or send viruses to ur mail and much more. |
Remrin said: Hackers are just sad people with nothing better to do than ruin other people's lives because theirs is so crap. Mum probably didn't love them and give them hugs as a child. Ah U don't know much about hackers, do u? There are many types of hackers the ones u're talking about are black hats. There are white hat hackers who hack for the good of humanking. |
Remrin said: Yuki_10 said: Ah U don't know much about hackers, do u? There are many types of hackers the ones u're talking about are black hats. There are white hat hackers who hack for the good of humanking. Good hacking, like? The white hats are the ones who work for companies and gvernments. They hack the company's system and check for vunerablities. They tell the company how to improve their security and etc. This job is called Ethical hacking. |
| Thanks for warning. Good job :) |
| A hack attack? D'awww.... How lovely to read about it on each anime website I give/gave a little visit from time to time. How sad it must be for the hackers that I never even use the same e-mail twice anywhere. Have fun on hacking a 24h old account 'pal'. You got user -Mikoto- my pw here and... I dunno. lmfao |
𝘠𝘰𝘶 𝘫𝘶𝘴𝘵 𝘥𝘰𝘯'𝘵 𝘨𝘦𝘵 𝘪𝘵 𝘥𝘰 𝘺𝘰𝘶? 𝘐'𝘮 𝘯𝘰𝘵 𝘴𝘵𝘶𝘤𝘬 𝘩𝘦𝘳𝘦 𝘸𝘪𝘵𝘩 𝘺𝘰𝘶. ¡ǝɯ ɥʇᴉʍ ǝɹǝɥ uᴉ ʞɔnʇs ǝɹ,no⅄ |
| Wait, there were phishing sites similar to MAL? Never saw one... |
| I login by SNS. So, am I fine or should I strengthen my security for the app that I use for SNS too? |
-Haoto-May 25, 12:56 AM
 ➢ YouTube ➢ Weird Videos ➢ Anime Edits ➢ Pixiv ➢ SheetHost "Salvation is a thin thread dangling from heaven." - Mary ~ Death Mark |
| Please add two-step verification to MAL accounts. |
 |
| Btw, what can we do if our account gets hacked? |
 |
Orion_Gospel said: Btw, what can we do if our account gets hacked? Good question, Ask Mal. Normally we have to verify our identity. |
Yuki_10 said: Orion_Gospel said: Btw, what can we do if our account gets hacked? Good question, Ask Mal. Normally we have to verify our identity. I didn't find anything about hacking at all. Neither about verification. |
|
| Haven't changed my password, not going to. Besides, they hack into it and what're they gonna do? Remove my list? Post porn using my account? Didn't care, don't care, won't care. |
 |
GeneralEcchi said: What exactly could someone gets by hacking a MAL account ? Many things Your Ip(not sure), your Email, your credit card numbers(maybe), he can also use your accounts for other purposes like starting a discussion and putting a malicious link, and etc. |
| Many people here do not seem to care if someone broke into their account but some of us, like me, do. I would hate to lose any part of my account after spending 10 YEARS and counting on my database. It would suck even worse if it was because MAL has lazy or incompetent admin who didn't bother to update anything. That would be a slap in the face of us users who actually trust MAL to make sure their website is safe and secure to use. |
 |
| aight |
 |
More topics from this board
» Related Anime/Manga Section Changes ( 1 2 )Kineta - May 23 |
97 |
by RobbiRobb
»»
4 hours ago |
|
» MAL Game "Fantasy Anime League" Opens for Spring 2024 ( 1 2 3 )Kineta - Mar 17 |
145 |
by Vulpix98
»»
7 hours ago |
|
» [Challenge] You Should Read This Manga 2024 ( 1 2 3 4 5 )Kineta - Feb 23 |
246 |
by tingy
»»
8 hours ago |
|
» Favorites Boosting Accounts: Ranking Recalculations ( 1 2 3 4 5 ... Last Page )Kineta - May 6, 2021 |
404 |
by bastek66
»»
Yesterday, 7:41 PM |
|
» Planned 3hr Maintenance, Wednesday May 29 @ 1am-4am PTKineta - May 26 |
0 |
by Kineta
»»
May 26, 3:57 PM |