Change your passwords

[AwkwardMD]

Old accounts, made in 2010/2013/2014, with no post history, are making crypto posts in the Awards sub forum (and, presumably, elsewhere). All the same posts, word for word or pretty close

Is there any chance Lit's accounts database got compromised?

 

[OverconfidentSarcasm]

Holy shit! I didn't even notice that they were old accounts. I only saw the lacking post history and thought the used Captcha in the registration was crap.

 

[mark_jacobs50]

Does anyone know about how long it takes a story to be published by the moderators?

 

[ToPleaseHim]

Old accounts, made in 2010/2013/2014, with no post history, are making crypto posts in the Awards sub forum (and, presumably, elsewhere). All the same posts, word for word or pretty close

Is there any chance Lit's accounts database got compromised?

I’ve seen the same thing on other sites, as well. We are removing the posts as quickly as we see them here (please keep reporting these if you see them). I know the powers that be are paying attention.

 

[Manu]

This is not a Literotica issue.

This appears to be a data leak somewhere that is being used to login to accounts on thousands of websites. Some posts have suggested it might be related to the recent LastPass news, but no one knows for sure. If you are using LastPass, you should probably change your password to be safe.

You can read more about the issue with accounts being taken over on various forums.
https://www.phpbb.com/community/viewtopic.php?p=15919771
https://xenforo.com/community/threa...isting-accounts-with-no-need-to-login.211713/
https://invisioncommunity.com/forum...en-explicitly-set-to-be-blocked-from-posting/
https://www.cheresources.com/invision/topic/31245-spammers/

If you know someone whose account was taken over here at Lit, please let us know so that we can get them back into their account.

 

[AwkwardMD]

Thank you for digging into this so quickly. It is appreciated.

 

[jaF0]

I can't imagine why people use third party password vaults or things that consolidate bank account logins ... Mint is it?

That said, I haven't seen any more here in the last couple of days.

 

[Britva415]

This is why you don't re-use the same password everywhere.

 

[OverconfidentSarcasm]

You know, maybe it's time to simply deactivate the accounts that have not been used in two years or so.

Not only would that solve the Spambot-Problem, it would also help the people who had their passwords stolen. If the obtained login data no longer works, there's at least a chance their dataset will be removed from the botlists to try on other sites as well.