TapaTalk hacked

Rasty

Fan
Joined
Feb 16, 2014
Messages
804
I often feel those statistics must include some sort of bots. I feel they are much higher than they really are each time I see them- then I think- what better way to make Admins choose to stay.
Ignore users and look at posts. Bots can't post.
 

Rasty

Fan
Joined
Feb 16, 2014
Messages
804
From what I can tell based on what I've analyzed thus far, Tapatalk users rarely post, it just shows them searching and they never really respond to PMs where I try to entice them to post. So I have a feeling that it will soon be disabled unless they all start freaking out lol.



Yeah that does suck a bit especially in an age where most photos are taken with a phone.
Messaging never worked with tapatalk and WBB
 

Shawn Gossman

Tazmanian Master
Joined
Dec 16, 2005
Messages
8,034
Maybe it is time to get rid of TapaTalk.
Not for me. Some of my members expressed that they would be depressed if we ditched it and that they accept any security risk. So as long as Tapatalk doesn't risk my actual forum code...then I am leaving it as an option but still encouraging the use of IPBs mobile interface as well.
 

BirdOPrey5

#Awesome
Joined
Aug 14, 2008
Messages
4,217
Now they are saying you should change all your passwords, not just the forum password...

Latest email-



Dear Tapatalk Forum Owner,

On December 9th, we discovered that someone had used an exploit to compromise ourWordPress Blog and Tapatalk Support Forums, this lead to the disclosure of email addresses and passwords of some of our support forum users. All Tapatalk Support Forum account passwords were reset and all of our forum members were notified immediately.

As a precautionary measure for forum owners, on December 16th we also reset all passwords used to access the Tapatalk Forum Owner Admin Dashboard.

If you have not logged in since December 16th, please do so at your earliest convenience and choose a new password.


Next Steps to Take to Stay Secure:

  • Please choose a strong password, containing a mix of upper and lower case letters, numbers and even symbols if possible.
  • Refrain from using the same password on more than one site. Passwords should be unique to each site in order to comply with security best practices.
  • If you are an admin or moderator of a forum, please consider resetting your Tapatalk ID password as well. You can do so by editing your profile from within the Tapatalk app, or logging in on our home page through the "App User Login In" link and select "Reset Password".
  • Once logged into your Tapatalk admin console, please update your forum's Tapatalk API key. You may do so by selecting your forum and generating a new key to cut and paste into your forum system's admin CP.

The Tapatalk Support Forums have been restored, and as a precaution, rolled back approximately one week. As the situation develops we will keep you updated.

For your safety, Tapatalk emails will no longer contain links for password resets or any other tasks. If you receive any suspicious emails that appear to be sent by Tapatalk, do not follow any links and report the email to us as soon as possible.


We are sorry for this inconvenience and thank you for your patience,

The Tapatalk Team
For the record although they said on December 16 they reset all passwords to the Forum Owner Admin Dashboard, they did not reset mine- perhaps they could see I had changed it after the hack.
 

cheat_master30

Moderator
Joined
Jan 16, 2010
Messages
3,852
The last email (and this topic) makes kind of glad I decided not to use Tapatalk after all.
 

zappaDPJ

Administrator
Joined
Aug 26, 2010
Messages
7,125
I did wonder when they would wake up to the fact that a large proportion of their users would probably use the same details for both accounts. One sandwich short of a picnic seems an appropriate description.
 

Shawn Gossman

Tazmanian Master
Joined
Dec 16, 2005
Messages
8,034
I did wonder when they would wake up to the fact that a large proportion of their users would probably use the same details for both accounts. One sandwich short of a picnic seems an appropriate description.
I make it a general rule not to use a password more than once. I have so many of them that I have to write them down. I use traditional paper and pen, hack-proof and I don't see someone breaking in my house, risking getting shot, for my secret book of passwords lol
 

zappaDPJ

Administrator
Joined
Aug 26, 2010
Messages
7,125
I make it a general rule not to use a password more than once.
That's good advice rarely followed by anyone including forum admins. I keep all my randomly generated passwords on a USB stick from which c&p whenever I need them. I sure this method would be frowned upon by security experts but it's not failed me yet and it does mean all of my passwords are unique.
 

Shawn Gossman

Tazmanian Master
Joined
Dec 16, 2005
Messages
8,034
That's good advice rarely followed by anyone including forum admins. I keep all my randomly generated passwords on a USB stick from which c&p whenever I need them. I sure this method would be frowned upon by security experts but it's not failed me yet and it does mean all of my passwords are unique.
Yep, I am big into security. Now its the physical side of it but understanding the physical side of security gives you a basic understanding of the cyber side of things. I'm not going to use an easy passcode on a gate that I provide security to a client for and I'm not going to use that password on other clients sites as well, that would essentially make me look like an idiot lol
 

BirdOPrey5

#Awesome
Joined
Aug 14, 2008
Messages
4,217
Note to self: Never use TapaTalk.
Based on what?

If you never use a company that has been hacked you'll find yourself unable to do any business soon enough. Even the biggest places get hacked- it happens- that's why you need to do your part and use unique passwords. If you used a unique password the only damage potentially done was someone posted as you on Tapatalk forum (which was since deleted since they rolled back a week.)

There are plenty of reasons not to use Tapatalk, but the hack isn't one of them.
 

Rasty

Fan
Joined
Feb 16, 2014
Messages
804
Based on what?

If you never use a company that has been hacked you'll find yourself unable to do any business soon enough. Even the biggest places get hacked- it happens- that's why you need to do your part and use unique passwords. If you used a unique password the only damage potentially done was someone posted as you on Tapatalk forum (which was since deleted since they rolled back a week.)

There are plenty of reasons not to use Tapatalk, but the hack isn't one of them.
Based on multiple red flags I would not use Tapatalk. They keep having security issues, won't fix bugs, won't respond to emails or support requests. It's foolish to install any plugins made by tapatalk at this point. You have no idea what they will "update" which could create a vulnerability to your servers security. When trust is lost it's very difficult to regain.

With vbulletin 3 and 4 your stuck with tapatalk because your alternative doesn't work. I'm not using vbulletin so I'm not stuck
 

Erin Nicole

Habitué
Joined
Jul 13, 2014
Messages
1,053
I use LastPass. Better than the old paper and pen cause I'd end up losing that password book. XD

EDIT: Though a password book would be fairly convenient.
 

PoetJC

⚧ Jacquii: Chenyneh Kween ⚧
Joined
Jul 9, 2006
Messages
21,028
Ask Me Anything
Visit
UGH! This entire thread is truly making want to consider jumping off the "I'm a TT fan" bandwagon.

But I just really appreciate Tapatalk's functionality. I think it's a great app. And like has been said - We live in the online world.. Any modification/add-on or even main script has the possibility of being hacked and/or exploits found. It seems to me that Tapatalk has addressed the security issues though. So I don't necessarily see any huge problem. I realize I'm in the minority - but whatever :p

J.
 

Sylvain

Enthusiast
Joined
Jul 10, 2012
Messages
247
I removed my Tapatalk few days ago.... No complaint from members so far...
 
Top