Thank you HaveBlue for bringing this to our attention.
To clarify my earlier response:
54.172.192.242 is forum.blackmagicdesign.com.You can verify this for yourselves by using "nslookup forum.blackmagicdesign.com" or
"dig forum.blackmagicdesign.com"
- Code: Select all
$ nslookup forum.blackmagicdesign.com
Non-authoritative answer:
Name: forum.blackmagicdesign.com
Address: 54.172.192.242
This issue does not indicate a breach.
The questionable links do not refer to a duplicate forum.
Howard Roll wrote:How does the Phisherman know what threads I’m following if there’s no security breach? Is that information public somewhere?
Thanks
Howard, it was not a Phisherman sending the message, it was this forum. The message format was not in it's typical form.
Http access was previously allowed to the forum- this has been changed and we now only allow
https connections.
The http access made it possible to post messages to a thread, that would send the 'odd' looking notfications to people subscribed to the thread. It should no longer be possible to do this.
Hope this clarifies the situation,
regards,
Martin