Recent Posts

Can confirm the same for me.

I have no idea what's going on here?

Not sure what that guy was on about, I never received any spam emails from this site/server/whatever.

Can confirm the same for me.

Not sure what that guy was on about, I never received any spam emails from this site/server/whatever.

"Websites do not store passwords. They are always just hashes."

Not even gonna bother anymore. You've proven you have no idea what you're talking about. Congratz!

 

Websites do not store passwords. They are always just hashes.

Email addresses are not special. Any server can send emails from any email address to any other email address. If your server is powerful enough, you can send emails to everyone in the world, without even needing a list of email addresses. This is why everyone has 10,000 unread spam emails at any given time.

If you are getting spam, you can click the Unsubscribe link in the email, which is required by the CAN-SPAM Act. If this link isn't present, you can set filters with your email provider.

"Websites do not store passwords. They are always just hashes."

Not even gonna bother anymore. You've proven you have no idea what you're talking about. Congratz!

Websites do not store passwords. They are always just hashes.

Email addresses are not special. Any server can send emails from any email address to any other email address. If your server is powerful enough, you can send emails to everyone in the world, without even needing a list of email addresses. This is why everyone has 10,000 unread spam emails at any given time.

If you are getting spam, you can click the Unsubscribe link in the email, which is required by the CAN-SPAM Act. If this link isn't present, you can set filters with your email provider.

The email addresses of most members are publicly available on their profile summary. We don't have any secret sensitive data... we don't store passwords or banking info.

I don't think you understand how serious this is and what the consequences are. Your website stores:
Birthdate
Password(Unknown if salted or not)
Location(Optional)
Gender(Optional)

I'd say that's enough to send convincing enough emails, as well as use the password(unless it is salted with blowfish or any other powerful algorithm) to login to a user's account on other websites if they use the same password. I'd suggest you send an email to all existing users warning them to change their passwords at the very least.

This can turn very badly if you're the sole owner o this website.

That's not it, I am not getting emails from your server, I am in quite a few spam lists right now as I get around 60 spam mails per day right now.
The fact that someone has 80K+ emails and other contact info is what you should really worry about, and the fact that you didn't even know about this until I found out about it.

The email addresses of most members are publicly available on their profile summary. We don't have any secret sensitive data... we don't store passwords or banking info.

I'm making some changes to the email settings on the server to help prevent this.

That's not it, I am not getting emails from your server, I am in quite a few spam lists right now as I get around 60 spam mails per day right now.
The fact that someone has 80K+ emails and other contact info is what you should really worry about, and the fact that you didn't even know about this until I found out about it.

I am not making a new thread so you can just delete these posts afterwards. Someone apparently made a nice backup(possibly) of your database while you were migrating to the new server(or whatever, I skimemd over the latest announcements) and you didn't take notice of it.
https://hacked-emails.com/leak/b644face7f018e30f518/gameanyone-com/

I have been getting spam for a week now.

I'm making some changes to the email settings on the server to help prevent this.