Jump to content

  • You cannot start a new topic
  • You cannot reply to this topic

EMAIL : Access to Your CS-Cart Help Desk Account Has Been Restricted Rate Topic   - - - - -

 
  • teksigns
  • Senior Member
  • Members
  • Join Date: 26-Jun 09
  • 181 posts

Posted 21 March 2013 - 01:00 PM #1

I recieved this email today .

is this real ?

or a scam ?


You have received this message, because you are a registered CS-Cart Help Desk user.

Please carefully read this message, it contains important information regarding your CS-Cart Help Desk account security!

We are informing you that CS-Cart Help Desk system has been recently attacked.

The attack has been successfully reflected, and the vulnerability has been immediately closed, but some accounts still may be at risk of unauthorized access.

To guarantee the security of your CS-Cart Help Desk account, we have temporarily restricted the access to it.

In order to unlock the access to your account, reset your password and create a new one (it must differ from the one you used before) by following this link:

https://www.cs-cart....ecover_password

Thank you!

Best regards,
CS-Cart team



 
  • dsdewitt
  • Member
  • Members
  • Join Date: 19-Mar 09
  • 291 posts

Posted 21 March 2013 - 01:07 PM #2

Well
I did not try the link but went straight to the help desk and was not able to log in. I tried the forget password option, which I is the same as the link given in the email. There system has not sent a email to me in the last 10 minutes.
So I'm guessing that it is for real and maybe there password recover tool is really bogged down.

UPDATE: it took about 15 minutes for password recover to send email


Dave
David DeWitt
retail site ver. 2.1.1

 
  • tom437
  • Senior Member
  • Members
  • Join Date: 10-Jul 10
  • 635 posts

Posted 21 March 2013 - 01:09 PM #3

I have received the same e-mail too.
3.0.4
Hosting for less.
www.step2stephosting.com

 
  • rumburak
  • Junior Member
  • Members
  • Join Date: 05-Nov 10
  • 38 posts

Posted 21 March 2013 - 01:09 PM #4

me to 5 min a go

 
  • richardfmm
  • Senior Member
  • Trial users
  • Join Date: 20-Apr 12
  • 240 posts

Posted 21 March 2013 - 01:11 PM #5

Get the same mail to.

 
  • WebWatch
  • Advanced Member
  • Members
  • Join Date: 27-Aug 11
  • 66 posts

Posted 21 March 2013 - 01:50 PM #6

Would appreciate some official input on this.

CS-Cart 4.4.3


 
  • kmolchanov
  • CS-Cart team
  • Join Date: 06-May 11
  • 1313 posts

Posted 21 March 2013 - 01:55 PM #7

Hello,

Yes, this is an official statement, and this is an official broadcast to all registered Help Desk users.

Please follow the instructions in the e-mail and reset your password.

Thanks.

Konstantin Molchanov,
CS-Cart Architect Team
Suggest and vote for new features | Report a bug


 
  • Flow
  • Super Duper and Amazingly Sexy Senior
  • Members
  • Join Date: 13-Oct 10
  • 2318 posts

Posted 21 March 2013 - 01:56 PM #8

This is real. I STRONGLY recommend to change your credentials (ftp, admin, etc) if you had these stored in the helpdesk system, because hackers having these, that could get really ugly!

When life hands you lemons, bring on the Tequila baby!


 
  • WebWatch
  • Advanced Member
  • Members
  • Join Date: 27-Aug 11
  • 66 posts

Posted 21 March 2013 - 01:56 PM #9

Thank you for confirming that.

CS-Cart 4.4.3


 
  • StellarBytes
  • Senior Member
  • Members
  • Join Date: 08-Aug 11
  • 1807 posts

Posted 21 March 2013 - 07:49 PM #10

Can CS-Cart offer any insight into exactly what data has been compromised? Obviously I suggest changing ALL login credentials which have ever been stored in the Help Desk - Cart Login, FTP Login, etc. Would just like to know potentially what data the hackers have obtained.
Hire StellarBytes for CS-Cart Design & Development Services

 
  • selectcase
  • Advanced Member
  • Trial users
  • Join Date: 26-Jan 13
  • 61 posts

Posted 21 March 2013 - 10:47 PM #11

thanks for the info

 

Posted 22 March 2013 - 01:41 AM #12

Can CS-Cart offer any insight into exactly what data has been compromised? Obviously I suggest changing ALL login credentials which have ever been stored in the Help Desk - Cart Login, FTP Login, etc. Would just like to know potentially what data the hackers have obtained.


that's why the timebomb is an excellent idea - posted heaps of projects and while logging in, can verify that there is no server credentials listed.
I've moved on from CS-Cart to WooC******** - If you need anything I can be of little help.

 
  • Flow
  • Super Duper and Amazingly Sexy Senior
  • Members
  • Join Date: 13-Oct 10
  • 2318 posts

Posted 22 March 2013 - 04:58 PM #13

Can CS-Cart offer any insight into exactly what data has been compromised? Obviously I suggest changing ALL login credentials which have ever been stored in the Help Desk - Cart Login, FTP Login, etc. Would just like to know potentially what data the hackers have obtained.


I asked cs-cart the same thing. Only credentials stored (and thus not destroyed yet by the timebomb) during the hack can be compromised.

When life hands you lemons, bring on the Tequila baby!