Jump to content


* * * * * 3 votes

CAG Defacing/Hacking News & Updates


#1 CheapyD   Head Cheap Ass Administrators   17710 Posts   Joined 15.8 Years Ago  

Posted 19 January 2016 - 03:17 AM

*
POPULAR

Sorry for the inconvenience this has caused.  We are taking steps to make sure our data is as secure as possible.

 

1)  Your passwords are combined with a random set of characters and then hashed to create a unique fingerprint, and only this is stored in our database.  This is impossible to reverse engineer, so if you use your CAG password on other sites, they would not be compromised.

 

2)  While we don't have any evidence that any data has been taken, we can't rule out that it wasn't taken.  This means your email address and your username might have been taken.

 

3) A required password change will be incoming.  We need to regenerate new salts (the random strings used to make a hash more unique) and that screws up the stored passwords.

 

More information soon.  Thanks for your patience.

 

Big thanks to John for getting us back up fast.



#2 ProfessorStotch   Banned Banned   13654 Posts   Joined 11.2 Years Ago  

ProfessorStotch

Posted 19 January 2016 - 03:24 AM

I bet anyone $10 that Shipwreck finds a way to blame it on Sony.

#3 keithp   Older than you CAGiversary!   5602 Posts   Joined 15.1 Years Ago  

Posted 19 January 2016 - 03:24 AM

I hope he was caught.



#4 RoytheRobot   El Piraguero. CAGiversary!   2551 Posts   Joined 5.5 Years Ago  

RoytheRobot

Posted 19 January 2016 - 03:27 AM

CAH: Cheap Ass Hacker

#5 Ryuukishi   My ambitionz az a Ryder CAGiversary!   11166 Posts   Joined 10.7 Years Ago  

Posted 19 January 2016 - 03:27 AM

Date night is saved!



#6 Ferrari Racer   Banned CAGiversary!   6698 Posts   Joined 7.6 Years Ago  

Ferrari Racer

Posted 19 January 2016 - 03:28 AM

Must have been a Slickdeals user....kidding

 

Sorry about what you had to deal with CheapyD and the rest of the staff. Thanks for keeping us updated.



#7 Olengie   Your Waifu is Kuso. Except Mine CAGiversary!   11647 Posts   Joined 6.6 Years Ago  

Posted 19 January 2016 - 03:29 AM

Finally back. 

 

Despite knowing it was hacked, I kept clicking on my bookmark out of habit.



#8 ToadKirby   CAG Veteran CAGiversary!   512 Posts   Joined 14.6 Years Ago  

ToadKirby

Posted 19 January 2016 - 03:30 AM

Good luck on the cleanup Cheapy.  Sad to see this happen, but happy the site is back.



#9 mvpcrossxover   CAGiversary! CAGiversary!   319 Posts   Joined 7.9 Years Ago  

mvpcrossxover

Posted 19 January 2016 - 03:37 AM

but the child molester is still on the loose



#10 Olengie   Your Waifu is Kuso. Except Mine CAGiversary!   11647 Posts   Joined 6.6 Years Ago  

Posted 19 January 2016 - 03:37 AM

I already changed my password Cheapy.



#11 Jackovasaurus   And ya say Chi-City CAGiversary!   1409 Posts   Joined 10.1 Years Ago  

Jackovasaurus

Posted 19 January 2016 - 03:37 AM

Thanks for the update cheapy. You're on this shit.

#12 MethodManFTW   CAGiversary! CAGiversary!   427 Posts   Joined 9.0 Years Ago  

MethodManFTW

Posted 19 January 2016 - 03:38 AM

Defacing?  Lol, wtf happened?



#13 Outrager   CAGiversary! CAGiversary!   212 Posts   Joined 15.2 Years Ago  

Posted 19 January 2016 - 03:38 AM

Phew... Good thing I use 1Password.



#14 Nick51705   Zelda Fan CAGiversary!   4106 Posts   Joined 4.1 Years Ago  

Posted 19 January 2016 - 03:39 AM

Thank you for all your hard work in getting the site back as quickly as possible!

 

If it's impossible to reverse engineer the password, then why the mandatory password change?



#15 CheapyD   Head Cheap Ass Administrators   17710 Posts   Joined 15.8 Years Ago  

Posted 19 January 2016 - 03:40 AM

Good luck on the cleanup Cheapy.  Sad to see this happen, but happy the site is back.

I only had mild panic attacks.  John is doing the actual heavy lifting.  If only we could channel the energy of a good panic attack!



#16 Z-Saber   moon2S CAGiversary!   6136 Posts   Joined 14.1 Years Ago  

Posted 19 January 2016 - 03:40 AM

Precaution.

#17 latin trident   Banned Banned   935 Posts   Joined 10.8 Years Ago  

latin trident

Posted 19 January 2016 - 03:40 AM

While the site was down, Fire Emblem Fates Special Edition came back in stock at Best Buy! Glad you guys are back up! And I'm kidding about Fire Emblem. Sorry, couldn't resist

#18 Macka1080  

Macka1080

Posted 19 January 2016 - 03:40 AM

Thanks for the update Cheapy! All the best in handling whatever crap that idiot threw your way.



#19 phantomphoenix   Make It Loud! CAGiversary!   2477 Posts   Joined 7.4 Years Ago  

phantomphoenix

Posted 19 January 2016 - 03:41 AM

They were very philosophical asking questions like "Why are you here?" Makes you think, why are any of us here, really...?



#20 CheapyD   Head Cheap Ass Administrators   17710 Posts   Joined 15.8 Years Ago  

Posted 19 January 2016 - 03:43 AM

Thank you for all your hard work in getting the site back as quickly as possible!

 

If it's impossible to reverse engineer the password, then why the mandatory password change?

We need to regenerate new salts (the random strings used to make a hash more unique) and that screws up the stored passwords.


#21 DoctorZ  

Posted 19 January 2016 - 03:44 AM

I was worried about what happen soon as I seen it.'

I'm glad the site is backup pretty fast.
 

They were very philosophical asking questions like "Why are you here?" Makes you think, why are any of us here, really...?

 

To get cheap deals and run away with it!



#22 Beatles   Cartoon Character CAGiversary!   4349 Posts   Joined 5.1 Years Ago  

Posted 19 January 2016 - 03:47 AM

I just need to know is wombat okay!? Please tell me we got him to a safe bunker under the city!

#23 neocisco   Changnesiac CAGiversary!   19218 Posts   Joined 14.6 Years Ago  

Posted 19 January 2016 - 03:47 AM

I'm not changing my password.  That would mean that the terrorists have won.



#24 Thatguy1513   Him again.... CAGiversary!   2595 Posts   Joined 4.3 Years Ago  

Thatguy1513

Posted 19 January 2016 - 03:47 AM

Hooray! Now I can go back to spending 90% of my day reading this site!

#25 kanamit   This is the end. My only friend, the end CAGiversary!   2737 Posts   Joined 8.8 Years Ago  

Posted 19 January 2016 - 03:48 AM

 

We need to regenerate new salts (the random strings used to make a hash more unique) and that screws up the stored passwords.

I think I've listened to enough of your podcasts to know that this is the type of thing that gets a snarky comment from you guys.



#26 Squarehard   Nyaa~ CAGiversary!   20825 Posts   Joined 11.1 Years Ago  

Posted 19 January 2016 - 03:48 AM

I'm an Angry Ass Gamer.

 

What the hell no life hacker?!



#27 Dead of Knight  

Dead of Knight

Posted 19 January 2016 - 03:48 AM

Sorry for the inconvenience this has caused.  We are taking steps to make sure our data is as secure as possible.

 

1)  Your passwords are combined with a random set of characters and then hashed to create a unique fingerprint, and only this is stored in our database.  This is impossible to reverse engineer, so if you use your CAG password on other sites, they would not be compromised.

 

2)  While we don't have any evidence that any data has been taken, we can't rule out that it wasn't taken.  This means your email address and your username might have been taken.

 

3) A required password change will be incoming.  We need to regenerate new salts (the random strings used to make a hash more unique) and that screws up the stored passwords.

 

More information soon.  Thanks for your patience.

 

Big thanks to John for getting us back up fast.

Very impressed with this response and very impressed that passwords were not compromised.  Thank you for not taking any chances with our information!



#28 Ferrari Racer   Banned CAGiversary!   6698 Posts   Joined 7.6 Years Ago  

Ferrari Racer

Posted 19 January 2016 - 03:48 AM

They were very philosophical asking questions like "Why are you here?" Makes you think, why are any of us here, really...?

To continue building my massive backlog of course



#29 Hybrid5006   White Trash Ballin CAGiversary!   3779 Posts   Joined 11.1 Years Ago  

Posted 19 January 2016 - 03:49 AM

 

We need to regenerate new salts (the random strings used to make a hash more unique) and that screws up the stored passwords.

 

You should add some pepper too. (seriously tho that adds another layer and pretty much eliminates rainbow tables - at least for now)



#30 SteveGo   What's my name? CAGiversary!   1217 Posts   Joined 15.5 Years Ago  

Posted 19 January 2016 - 03:51 AM

You should add some pepper too. (seriously tho that adds another layer)


Of flavor?