1
Quill and Feather Pub [Public] / Re: Someone has had a data leak or sold off private info
« Last post by Jeff Tanyard on Today at 07:15:51 AM »A few years ago, I got one of those "I hacked your eMail" messages where they say they hacked your eMail and, as proof, they reveal your password in the message.
That works on the presumption that you use the same password for everything. I don't.
So, I looked up where I used that password and found it was one of my vendors for supplies.
I don't use that password elsewhere so there is nowhere else someone could have gotten it. So, after confirming for myself that I didn't use it anywhere else and checking to make sure my computer hadn't been hacked, I eMailed the vendor to let them know I think they may have had a data breach. And I explained the situation.
They came back with, no, we haven't.
It's like, um, okay. Whatever. I can't think of any other way anyone could have gotten that password but whatever. I changed my password on their site and that was basically all I could do. There's no credit card information or anything stored there so any hacker couldn't get anything more than my eMail address and business shipping address.
That blanket denial by the vendor would be a serious red flag for me. If they haven't had a breach, then they must have shared or sold your data. If they did have a breach, then the vendor is either too incompetent to discover it or he's lying about it. I'd strongly consider severing all dealings with that person. Surely there's a competitor that can fulfill the same function at a similar price.