JavaScript is disabled
Our website requires JavaScript to function properly. For a better experience, please enable JavaScript in your browser settings before proceeding.

  • Join the #1 community for gun owners of the Northwest

    We believe the 2nd Amendment is best defended through grass-roots organization, education, and advocacy centered around individual gun owners. It is our mission to encourage, organize, and support these efforts throughout Oregon, Washington, Idaho, Montana, and Wyoming.

    Free Membership Benefits

    • Fewer banner ads
    • Buy, sell, and trade in our classified section
    • Discuss firearms and all aspects of firearm ownership
    • Join others in organizing against anti-gun legislation
    • Find nearby gun shops, ranges, training, and other resources
    • Discover free outdoor shooting areas
    • Stay up to date on firearm-related events
    • Share photos and video with other members
    • ...and much more!

You know that my Password is compromised ?

An answer/solution for this question has been selected.
JustShoot

JustShoot

OR. inside Washington County Cartel Territory
Messages
847
Reactions
940
An Announcement , sent from a big anonymous Question Mark ?
And Why ??? , do you think it is compromised on 41 other accounts . Is your NWfirarms site compromised and Phishing ???

screen shot :
-
Screenshot 2021-10-05 at 11-47-34 Your Alerts.png
-

-
Read More
 
Last Edited:
Sort by date Sort by votes
I occasionally get that kind of stuff about various accounts. Unless it's from a trusted site, it's spam or phishing. You'll notice that they almost always want you to you sign on their site using your XYZ account password. Probably the Ethiopian Prince telling you that you're the secret heir to a fortune. :s0139:
 
Upvote 0
Have to revise what I said above. Just now I logged out, cleared browser, came back in, did the two step verification and:

1633464751112.png

Message shown on a Windows 10 workstation running the latest release of Chrome. (And, yes, I changed my password here.)
 
Last Edited:
Upvote 0
Update: More info about this and other topics related to account security can now be found here:

Login and Security

Help topics related to logins and account security.
www.northwestfirearms.com www.northwestfirearms.com

----

Apologies for the panic everyone, this is part of the update this morning and our ongoing work to keep our members safe. I planned to announce this with some other security updates, but I'll post a bit about it here.

This new feature checks user passwords against a database of 613,584,246 real world passwords previously exposed in data breaches. Hackers, scammers, and other bad actors use these same databases along with automated bots to attempt to gain access to accounts (they already know your username). If you receive this alert, your password is no longer suitable for use and should not be considered secure. You will continue to receive alerts each time you log in until it is changed. As mentioned, you should use a different password for each site you log into along with a password manager to maintain them.

While there are many password managers out there, I highly recommend using Bitwarden. It's completely free, open source, and once you've installed it on your computer(s) and mobile device(s) it can synchronize passwords between them (so you won't lose all your passwords in case something happens to one of them). If you're one of the more tech savvy here, you're probably already using 2FA. If not, you should be. Those who aren't familiar with it should look into it before enabling it on your account, as an unrecoverable account situation is possible if things go wrong.

I've spoken with quite a few members who either aren't too concerned about an account compromise here or don't believe their accounts would be targeted.

Two things on this:
  1. These hackers, scammers, etc. are constantly evolving, and usually when you know why you were targeted, it's too late. Without divulging too much information, these people would love to get their hands on most of the accounts here; and when they do they won't be posting memes. We have thousands of malicious attempts here every single day.
  2. If your account is compromised, it will be locked. In all likelihood, we do not have enough information about you to safely recover your account.

I don't mean to sound all doom and gloom folks, but things on the internet are bad, and they're only getting worse. Be proactive and stay safe.
 
Last Edited:
Upvote 0
Answer/Solution
Joe Link said:
Apologies for the panic everyone, this is part of the update this morning and our ongoing work to keep our members safe. I planned to announce this with some other security updates, but I'll post a bit about it here.

This new feature checks user passwords against a database of 613,584,246 real world passwords previously exposed in data breaches. Hackers, scammers, and other bad actors use these same databases along with automated bots to attempt to gain access to accounts (they already know your username). If you receive this alert, your password is no longer suitable for use and should not be considered secure. You will continue to receive alerts each time you log in until it is changed. As mentioned, you should use a different password for each site you log into along with a password manager to maintain them.

While there are many password managers out there, I highly recommend using Bitwarden. It's completely free, open source, and once you've installed it on your computer(s) and mobile device(s) it can synchronize passwords between them (so you won't lose all your passwords in case something happens to one of them). If you're one of the more tech savvy here, you're probably already using 2FA. If not, you should be. Those who aren't familiar with it should look into it before enabling it on your account, as an unrecoverable account situation is possible if things go wrong.

I've spoken with quite a few members who either aren't too concerned about an account compromise here or don't believe their accounts would be targeted.

Two things on this:
  1. These hackers, scammers, etc. are constantly evolving, and usually when you know why you were targeted, it's too late. Without divulging too much information, these people would love to get their hands on most of the accounts here; and when they do they won't be posting memes. We have thousands of malicious attempts here every single day.
  2. If your account is compromised, it will be locked. In all likelihood, we do not have enough information about you to safely recover your account.

I don't mean to sound all doom and gloom folks, but things on the internet are bad, and they're only getting worse. Be proactive and stay safe.
Click to expand...
Good to hear. I'm running out of porn star name passwords, and I'm getting too old for more "research".
 
Upvote 0
While we're on the subject, I use a very good random password generator that stores them in a heavily encrypted local database. Used it for years, never been hacked. Set it to generate weird length passwords like 13 or 17 characters, and throw some special characters in for good measure. Very secure, very easy to recommend. Here's the best part....it's free:

 
Upvote 0
Joe Link said:
Apologies for the panic everyone, this is part of the update this morning and our ongoing work to keep our members safe. I planned to announce this with some other security updates, but I'll post a bit about it here.

This new feature checks user passwords against a database of 613,584,246 real world passwords previously exposed in data breaches. Hackers, scammers, and other bad actors use these same databases along with automated bots to attempt to gain access to accounts (they already know your username). If you receive this alert, your password is no longer suitable for use and should not be considered secure. You will continue to receive alerts each time you log in until it is changed. As mentioned, you should use a different password for each site you log into along with a password manager to maintain them.

While there are many password managers out there, I highly recommend using Bitwarden. It's completely free, open source, and once you've installed it on your computer(s) and mobile device(s) it can synchronize passwords between them (so you won't lose all your passwords in case something happens to one of them). If you're one of the more tech savvy here, you're probably already using 2FA. If not, you should be. Those who aren't familiar with it should look into it before enabling it on your account, as an unrecoverable account situation is possible if things go wrong.

I've spoken with quite a few members who either aren't too concerned about an account compromise here or don't believe their accounts would be targeted.

Two things on this:
  1. These hackers, scammers, etc. are constantly evolving, and usually when you know why you were targeted, it's too late. Without divulging too much information, these people would love to get their hands on most of the accounts here; and when they do they won't be posting memes. We have thousands of malicious attempts here every single day.
  2. If your account is compromised, it will be locked. In all likelihood, we do not have enough information about you to safely recover your account.

I don't mean to sound all doom and gloom folks, but things on the internet are bad, and they're only getting worse. Be proactive and stay safe.
Click to expand...
Malicious Bastards ... Have no doubt they are beating on your firewall 24/7, and it's an endless job to keep them out .
.
 
Upvote 0
For my commercial work accounts, I comprise a list of ridiculous non-sense phrases that contain alpha-numeric and special characters, concocted from my dubiously devious mind…. then I rotate them every month.


Stupid things along the lines of (but NOT actually these)….


Xi-Xing-Pin9_p0ng

Ll@ma-Llam@_ding-D0ng

St€€nkyPe@te_w/10towS

M00sey\F@yte&sKwirleyQ

BiD€n-bLowz&u-@LL-n0
 
Upvote 0
Stomper said:
For my commercial work accounts, I comprise a list of ridiculous non-sense phrases that contain alpha-numeric and special characters, concocted from my dubiously devious mind…. then I rotate them every month.


Stupid things along the lines of (but NOT actually these)….


Xi-Xing-Pin9_p0ng

Ll@ma-Llam@_ding-D0ng

St€€nkyPe@te_w/10towS

M00sey\F@yte&sKwirleyQ

BiD€n-bLowz&u-@LL-n0
Click to expand...
34t@d1ckP3d0J03
 
Upvote 0
I changed my password as requested using my desktop which goes through a VPN but now when using my phone connected to home wi-fi it says my ip is blocked. Any suggestions?
 
Upvote 0

Similar threads

teflon6string
Received a message from NWFA (I think) instructing me to change my password. Is this legit?
Replies
11
Views
621
washagonian
User 1234
Not A Bug Grievance against the site.
2 3
Replies
43
Views
2K
Certaindeaf
CountryGent
Potential Issue Random Error on Tags
Replies
1
Views
101
DB is Here
ilikegunspdx
Potential Issue Page resets when trying to paste. Looks like only if it has ad portion in the paste so maybe not a bug
Replies
1
Views
135
ilikegunspdx
Jcon268
Cannot Reproduce Classified Ad filters not showing appropriate results?
Replies
5
Views
267
arakboss
Sidebar Menu

New Posts

Upcoming Events

kendraperez
Redmond Gun Show
Redmond, OR
Flintlock Tom
Klamath Falls gun show
Klamath Falls, OR
kendraperez
Centralia Gun Show
Centralia, WA
M
Oregon Arms Collectors April 2024 Gun Show
Portland, OR

New Resource Reviews

New Classified Ads

Support Our Community

If our Supporting Vendors don't have what you're looking for, use these links before making a purchase and we will receive a small percentage of the sale
Back Top