Guys,how can I make this site secure? Both with Opera and Firefox it says the site isn't secure. Edge doesn't say this. Is this some setting I need to apply? I don't recall having this issue in the past. Is it something that has changed on your end?
The problem is I just received one of these scam e-mails listing both my e-mail address and the password for this site. I'll be honest,the password has been the same since I joined in 2008 and this password is only used on here. I have changed it and I'm obviously not going to reply to the e-mail.
I'll be honest it is worrying but after googling the e-mail it seems it's just phishing but they clearly got my password from somewhere.I guess entering it on here? Yeah,I was dumb to enter the p/word when it said insecure.
Firefox does that to me occasionally..Most recently logging on to Gmail..I tried to fix it and went to firefox forums and no solutions,,Used Pale moon and it connected fine,,After a doy or two it stopped happening..And weird the Pale Moon wouldn't connect here or to google search awhile back..never found any solid answers to either problem other than wait a bit..
This site uses http, not https. If you don't know how these protocols differ, https is secure, meaning data sent back and forth between you and the site is encrypted. http is sent in clear text. So it's impossible for you to make this site secure. FF and Opera are correct to point out your connection is insecure. Edge should do the same.
You are correct Wizard,Edge says insecure too. So what can I do? I guess that my password could have been picked up from somewhere else but this seems a coincidence. SimHQ used to be HTTPS didn't it because I don't recall it being insecure a while back,or maybe it did and I just didn't notice.
Thanks for that info wheelsup. I tried the directions for Chrome but the Windows tab gives me an error when I go to "Add" the site because it says "Sites added to this zone must use the https:// prefix. This prefix assures a secure connection." The SimHQ url starts with an http.
So if I understand this correctly,if I enter a new password it's not secure? I'm not saying this is how they got my password but it was one I only use here.
When you enter a new password, and press enter or click continue or whatever, that password is send across the internet to the server you're connected to. If the site you're sending your password, credit card number, or any other data for that matter, is using HTTPS, the data flowing both ways is encrypted. If the site uses HTTP as this forum does, the data is sent it clear text. That in itself doesn't make it insecure. But if a third party intercepts the data flowing between you and the server, they can read the clear text. If a third party intercepts data send between you and an HTTPS site, the data just looks like gibberish and can't be read. I'm not a security expert so I can't explain how man-in-the-middle attacks work but they do happen. That's why you often see warnings about the perils of using free coffee shop and airport wifi.
Thank you Wizard for the explanation. I've spent all day reviewing my security/passwords/e-mails. It was a bit of a wake-up call because some of my passwords are very old and a lot were similar. I think I can sleep better now
Guys,how can I make this site secure? Both with Opera and Firefox it says the site isn't secure. Edge doesn't say this. Is this some setting I need to apply? I don't recall having this issue in the past. Is it something that has changed on your end?
The problem is I just received one of these scam e-mails listing both my e-mail address and the password for this site. I'll be honest,the password has been the same since I joined in 2008 and this password is only used on here. I have changed it and I'm obviously not going to reply to the e-mail.
I'll be honest it is worrying but after googling the e-mail it seems it's just phishing but they clearly got my password from somewhere.I guess entering it on here? Yeah,I was dumb to enter the p/word when it said insecure.
I'd be interested in a little more info on the scam e-mail if you would sir.
Censored
Look for me on Twitter, Instagram, Facebook or Tic Toc...or anywhere you may frequent, besides SimHq, on the Global Scam Net. Aka, the internet. I am not there, never have been or ever will be, but the fruitless search may be more gratifying then the "content" you might otherwise be exposed to.
"There's a sucker born every minute." Phineas Taylor Barnum
Being the happy pariah that I am, I don't get that many anymore.
You admin types probably have to clean out your PM's often due to traffic.
Edit: #%&*$#, I must have accidentally deleted my last conversation with Destructis!
He was really a nice guy...as was PositiveG and Murphy.
Censored
Look for me on Twitter, Instagram, Facebook or Tic Toc...or anywhere you may frequent, besides SimHq, on the Global Scam Net. Aka, the internet. I am not there, never have been or ever will be, but the fruitless search may be more gratifying then the "content" you might otherwise be exposed to.
"There's a sucker born every minute." Phineas Taylor Barnum
I still have past conversations with Ming in my PMs.. And Destructis was a very cool dude. SimHQ needs a Wall of Past Posters or something to honor these folks. Remember Hank who posted here? A lineman, and a Miami Dolphin's fan. Man,the stories he told me about his Miami days.
Just remember if not https, keep a separate password for that site. SimHQ is cool, just takes more money like Thomas mentioned.
Even if you don't delete them you can email them to yourself to have a backup copy.
Choose the private messages you want to email to yourself Then click the "email checked" button at the bottom of the page DO NOT place a checkmark in the "Then Delete" box until you are sure you have received the email.
I'd be interested in a little more info on the scam e-mail if you would sir.
Here it is Nixer. Usual poor English. The e-mail does not tie up to the password here on SimHQ as we don't use an e-mail to log in with. How they came up with that I don't know.
Quote
Hello!
I'm a hacker who cracked your email and device a few months ago. You entered a password on one of the sites you visited, and I intercepted it. This is your password from XXXXXXXXX@XXXXXXXXXX on moment of hack: XXXXXXXXXX
Of course you can will change it, or already changed it. But it doesn't matter, my malware updated it every time.
Do not try to contact me or find me, it is impossible, since I sent you an email from your account.
Through your email, I uploaded malicious code to your Operation System. I saved all of your contacts with friends, colleagues, relatives and a complete history of visits to the Internet resources. Also I installed a Trojan on your device and long tome spying for you.
You are not my only victim, I usually lock computers and ask for a ransom. But I was struck by the sites of intimate content that you often visit.
I am in shock of your fantasies! I've never seen anything like this!
So, when you had fun on piquant sites (you know what I mean!) I made screenshot with using my program from your camera of yours device. After that, I combined them to the content of the currently viewed site.
There will be laughter when I send these photos to your contacts! BUT I'm sure you don't want it.
Therefore, I expect payment from you for my silence. I think $898 is an acceptable price for it!
Pay with Bitcoin. My BTC wallet: XXXXXXXXXXXXXXXXXXXXXXXXXXXX
If you do not know how to do this - enter into Google "how to transfer money to a bitcoin wallet". It is not difficult. After receiving the specified amount, all your data will be immediately destroyed automatically. My virus will also remove itself from your operating system.
My Trojan have auto alert, after this email is read, I will be know it!
I give you 2 days (48 hours) to make a payment. If this does not happen - all your contacts will get crazy shots from your dark secret life! And so that you do not obstruct, your device will be blocked (also after 48 hours)
Do not be silly! Police or friends won't help you for sure ...
p.s. I can give you advice for the future. Do not enter your passwords on unsafe sites.
Thinking about it,the only way they could connect my e-mail address and that password is if sometime in the long forgotten past I DID use those 2 items as a log-in but what that was I can't remember. When looking into this particular scam it did say that the passwords were either very old or no longer used. I would say then that I wasn't 'hacked' using SimHQ Does that seem a reasonable conclusion?
We've been getting those exact emails at work for about a month or so. It says it's coming from your own email address but it is not. Someone is spoofing your address to make their claim seem credible. It's very unlikely they have any information on you other than an email address. You can expect to receive it or a variation many times in the future. I've had about a dozen now. Just have a chuckle and delete it.