A list of their customer data including plaintext passwords is currently circulating

[namethreads.com]

I just received the following e-mail from Sedo which looks genuine


Dear valued SedoPro Customer


We have been informed that due to a security problem at one of our competitors a list of their customer data including plaintext passwords is currently circulating in the domain parking industry and in relevant hacker forums.



Due to the seriousness of this matter combined with the possibility that you might be using the same login data/password at more than one parking company, we strongly advise you to change your password at Sedo.



Sedo uses cryptographically unbreakable ciphertext for password checks and does not store your password in plaintext. This, and a variety of other security measures, ensures that your Sedo account is always safe from third parties.



We generally advise you to always use different login credentials for different sites and never hand out your login credentials to any third party.



Should you have any further questions or needs, your dedicated account manager is looking forward to help.



Kind regards,

Your Sedo Security and Compliance Team

 

[ginggang]

Security Email from Sedo ??

Anyone else get this from Sedo ? Who's the competitor ?


"We have been informed that due to a security problem at one of our competitors a list of their customer data including plaintext passwords is currently circulating on the web including relevant hacker forums.


Our Security and Compliance Team has found several of our own customers matching the publicly available list. Due to the seriousness of this matter combined with the possibility that you might be using the same login data/password at more than one parking company, we strongly suggest you to change your password at Sedo.

Sedo uses cryptographically unbreakable ciphertext for password checks and does not store your password in plaintext. This, and a variety of other security measures, ensures that your Sedo account is always safe from third parties.

We generally recommend to always use different login IDs for different sites and never hand out login IDs to any third party.

Should you have any further questions or needs, your dedicated account manager is looking forward to help.


Kind regards,

Your Sedo Security and Compliance Team

 

[spotedog]

Words Of Caution

DON"T follow any links in the email if you change your password.
Manually type in www.sedo.com and make sure it says "www.sedo.com/...."
I have a sedo account and didn't receive such an email

I just received the following e-mail from Sedo which looks genuine


Dear valued SedoPro Customer


We have been informed that due to a security problem at one of our competitors a list of their customer data including plaintext passwords is currently circulating in the domain parking industry and in relevant hacker forums.



Due to the seriousness of this matter combined with the possibility that you might be using the same login data/password at more than one parking company, we strongly advise you to change your password at Sedo.



Sedo uses cryptographically unbreakable ciphertext for password checks and does not store your password in plaintext. This, and a variety of other security measures, ensures that your Sedo account is always safe from third parties.



We generally advise you to always use different login credentials for different sites and never hand out your login credentials to any third party.



Should you have any further questions or needs, your dedicated account manager is looking forward to help.



Kind regards,

Your Sedo Security and Compliance Team

 

[namethreads.com]

There are no links in the message. I'm pretty sure this is genuine. I'm just wondering which parking company has been affected.

 

[Robbie185]

Anyone else get this from Sedo ? Who's the competitor ?

Must have been Namedrive...

 

[namethreads.com]

Over at DNF, Namedrive posted the following:

Hi guys,

I can confirm that the password changes are legitimate and initiated by NameDrive.

We were alerted of a possible security breach affecting less than 1% of our accounts, although we have no indication that any unauthrorised access was gained, we have reacted forcefully to ensure absolute security for your account.

If you have any concerns, please feel free to contact us at info - at - namedrive.com

Ed
__________________
www.NameDrive.com

 

[Spade]

Wonderful.... way to go NameDrive - you guys keep showing me why your on the bottom!