Author Topic: Attempted Fraud?  (Read 2005 times)

Offline chris_49

  • RootsChat Aristocrat
  • ******
  • Posts: 1,327
  • Unknown Father - swiving then vanishing since 1750
    • View Profile
Attempted Fraud?
« on: Thursday 12 October 17 09:10 BST (UK) »
One for the techies in Admin, but not to go in "technical help" which is for basics. I've recently had some problems with fraud (which I needn't go into here) and now I get an email from Disqus, greeting to Chris_49, saying there has been suspicious activity on my account, and to change my Disqus password.

I'm pretty sure I don't have an account with Disqus, but I only use username chris_49 with Rootschat and one other site, and I can still log into both. Does Rootschat use Disqus, which is a blog comment hosting site, to store passwords at all? The link seems genuine in that it doesn't link to an unrelated website URL as phishing scams do, but offers no options other than password change.

I'll change my password, but just wondered.

Chris

 
Skelcey (Skelsey Skelcy Skeley Shelsey Kelcy Skelcher) - Warks, Yorks, Lancs <br />Hancox - Warks<br />Green - Warks<br />Draper - Warks<br />Lynes - Warks<br />Hudson - Warks<br />Morris - Denbs Mont Salop <br />Davies - Cheshire, North Wales<br />Fellowes - Cheshire, Denbighshire<br />Owens - Cheshire/North Wales<br />Hicks - Cornwall<br />Lloyd and Jones (Mont)<br />Rhys/Rees (Mont)

Offline chris_49

  • RootsChat Aristocrat
  • ******
  • Posts: 1,327
  • Unknown Father - swiving then vanishing since 1750
    • View Profile
Re: Attempted Fraud?
« Reply #1 on: Thursday 12 October 17 09:12 BST (UK) »
Disqus was apparently hacked in 2012, but this seems a long interval before addressing the issue!
Skelcey (Skelsey Skelcy Skeley Shelsey Kelcy Skelcher) - Warks, Yorks, Lancs <br />Hancox - Warks<br />Green - Warks<br />Draper - Warks<br />Lynes - Warks<br />Hudson - Warks<br />Morris - Denbs Mont Salop <br />Davies - Cheshire, North Wales<br />Fellowes - Cheshire, Denbighshire<br />Owens - Cheshire/North Wales<br />Hicks - Cornwall<br />Lloyd and Jones (Mont)<br />Rhys/Rees (Mont)

Offline trystan

  • Administrator
  • RootsChat Marquessate
  • ********
  • Posts: 14,148
  • RootsChat Co-founder
    • View Profile
Re: Attempted Fraud?
« Reply #2 on: Thursday 12 October 17 11:12 BST (UK) »
Chris,

I sorry to hear that you have had problems with fraud recently, and you are right to be vigilant.

In answer to your question, RootsChat does not use Disqus.

We do however allow instant logins logins for people who are also registered/logged into: Faceook, Twitter, Google, Linkedin, Yahoo, YouTube, OpenID, Wordpress, Blogger, StackExchange.

These instant logins don't transfer any passwords however, but it does bring across the username that you would use on one of them to here, if you logged in that way. It doesn't work the other way round though, so your username of chris_49 would not be passed back to one of those sites if you logged into one of them.

So it's not going to be that.

It's wise as you are unsure to change your Disqus password, but don't do it by clicking on the link in the email even if it does look genuine. Go to the site itself via your browser and do it that way.

Let us know how you get on :)
Trystan
Send RootsChat a postcard:
RootsChat.com, Europa House, Barcroft Street, Bury, Lancashire, BL9 5BT
Admin Tip: Forgotten your Username or Password and would like to reply to one of these messages?  CLICK HERE to get a reminder.
AOL Users: You may need to 'cut and paste' any links you get in emails for them to work.

Offline chris_49

  • RootsChat Aristocrat
  • ******
  • Posts: 1,327
  • Unknown Father - swiving then vanishing since 1750
    • View Profile
Re: Attempted Fraud?
« Reply #3 on: Thursday 12 October 17 12:29 BST (UK) »
Thanks very much Trystan.

I never login to Rootschat via another site for the very reason that I suspect it might make fraud easier. I'll wait for the other site to reply and if they don't need it I'll just ignore the Disqus email since I don't use that site.

Chris
 
Skelcey (Skelsey Skelcy Skeley Shelsey Kelcy Skelcher) - Warks, Yorks, Lancs <br />Hancox - Warks<br />Green - Warks<br />Draper - Warks<br />Lynes - Warks<br />Hudson - Warks<br />Morris - Denbs Mont Salop <br />Davies - Cheshire, North Wales<br />Fellowes - Cheshire, Denbighshire<br />Owens - Cheshire/North Wales<br />Hicks - Cornwall<br />Lloyd and Jones (Mont)<br />Rhys/Rees (Mont)


Offline hallmark

  • ~
  • RootsChat Marquessate
  • ****
  • Posts: 17,525
    • View Profile
Re: Attempted Fraud?
« Reply #4 on: Thursday 12 October 17 13:10 BST (UK) »
One for the techies in Admin, but not to go in "technical help" which is for basics. I've recently had some problems with fraud (which I needn't go into here) and now I get an email from Disqus, greeting to Chris_49, saying there has been suspicious activity on my account, and to change my Disqus password.

I'm pretty sure I don't have an account with Disqus, but I only use username chris_49 with Rootschat and one other site, and I can still log into both. Does Rootschat use Disqus, which is a blog comment hosting site, to store passwords at all? The link seems genuine in that it doesn't link to an unrelated website URL as phishing scams do, but offers no options other than password change.

I'll change my password, but just wondered.

Chris

 

Do you still have the email?

If so, then try going View>Source

Look for   Received: from    .....and see if that says it was from them
Give a man a record and you feed him for a day.
Teach a man to research, and you feed him for a lifetime.

Offline chris_49

  • RootsChat Aristocrat
  • ******
  • Posts: 1,327
  • Unknown Father - swiving then vanishing since 1750
    • View Profile
Re: Attempted Fraud?
« Reply #5 on: Thursday 12 October 17 17:00 BST (UK) »

Do you still have the email?

If so, then try going View>Source

Look for   Received: from    .....and see if that says it was from them

I'm not sure. I use Chrome, and right-clicking and choosing "View Page Source" gives a lot of HTML - the word Received does appear 14 times but mostly as some sort of Boolean flag (true or false) and never giving an email source.

Clicking the "DS" icon does give a Disqus email address but I suippose that is forgeable.
Skelcey (Skelsey Skelcy Skeley Shelsey Kelcy Skelcher) - Warks, Yorks, Lancs <br />Hancox - Warks<br />Green - Warks<br />Draper - Warks<br />Lynes - Warks<br />Hudson - Warks<br />Morris - Denbs Mont Salop <br />Davies - Cheshire, North Wales<br />Fellowes - Cheshire, Denbighshire<br />Owens - Cheshire/North Wales<br />Hicks - Cornwall<br />Lloyd and Jones (Mont)<br />Rhys/Rees (Mont)

Offline hallmark

  • ~
  • RootsChat Marquessate
  • ****
  • Posts: 17,525
    • View Profile
Re: Attempted Fraud?
« Reply #6 on: Thursday 12 October 17 17:09 BST (UK) »
Yes you will get a lot of HTML and you will get Received a good few times, is there no

  Received: from   

??
Give a man a record and you feed him for a day.
Teach a man to research, and you feed him for a lifetime.

Offline chris_49

  • RootsChat Aristocrat
  • ******
  • Posts: 1,327
  • Unknown Father - swiving then vanishing since 1750
    • View Profile
Re: Attempted Fraud?
« Reply #7 on: Thursday 12 October 17 18:40 BST (UK) »
No - only followed by True, False or "Time Stamp". Lots of "from"  but usually deep in the code and never near a "received". I'm just going to ignore it

Skelcey (Skelsey Skelcy Skeley Shelsey Kelcy Skelcher) - Warks, Yorks, Lancs <br />Hancox - Warks<br />Green - Warks<br />Draper - Warks<br />Lynes - Warks<br />Hudson - Warks<br />Morris - Denbs Mont Salop <br />Davies - Cheshire, North Wales<br />Fellowes - Cheshire, Denbighshire<br />Owens - Cheshire/North Wales<br />Hicks - Cornwall<br />Lloyd and Jones (Mont)<br />Rhys/Rees (Mont)

Offline wyndham

  • --
  • RootsChat Senior
  • ****
  • Posts: 391
  • Census information Crown Copyright, from www.nationalarchives.gov.uk
    • View Profile
Re: Attempted Fraud?
« Reply #8 on: Thursday 12 October 17 20:03 BST (UK) »
I experienced exactly the same this morning.  I definitely have no account with Disquis nor have ever contacted them; so I just deleted it.