Tweet
Something interesting just happened today. This user on my forum (who's account's been deleted now) had some sort of a cookie tracker/whatever in his signature which redirected you automatically to some other site on viewing his profile or opening any of his threads.. and it somehow logged/sniffed your username and password on the forum.
One of my moderators fell for it.
Anyway, he did us no harm.. and that mod has changed his password too. I also just realized that I hadn't turned off HTML in signatures (which I have now
)..
What security measures should I take to prevent stuff like this from happening?
One of my moderators fell for it.
Anyway, he did us no harm.. and that mod has changed his password too. I also just realized that I hadn't turned off HTML in signatures (which I have now
)..What security measures should I take to prevent stuff like this from happening?
Comment