Spammers and Hackers, … Oh My

Yesterday myself and numerous others (perhaps all) received an email from Esther and Love via the OSVVM website. The email was generated by an account that they had. When I see something like this, I delete the account – which is exactly what I did yesterday.

I suspect these accounts were created using the normal channel of enrollment and not a hack (as they did nothing else damaging). We are looking into updating the account sign in process to make sure this does not happen again.

Jim

2 Comments

1. 

   Hendrik Eeckhaut April 29, 2016, 11:40 Log in to Reply

   Thanks Jim

2. 

   Torsten May 2, 2016, 02:54 Log in to Reply

   I think it would also be better to enable HTTPS. That would prevent eavesdropping of user credentials during log-in. Let’s encrypt provides free certificates for example, so it would not imply any additional costs.