ePassporte: Another Lie. Proof Inside. (Drama) (Pics)
 

You know what?

I always have thought that ePassporte's whole "scrambled passwords in the DB" story is bullshit. Now I know.

I signed into my account a second ago using the password they e-mailed me and went to change my password back so I can use "my" password to get into my account.

When I went to change it, I get this message:

http://www.ExtremeImageHost.com/uploads/08785e648d.jpg

Now, if they lost my password in this DB mess, how would the system know that I used that password before? Its lost, remember? So once again, ePassporte has blown smoke up my ass. Someone ain't tellin the truth.

What really happened, ePassporte? I cant wait to hear the explanation here.

Drama.
Sig spot.
9 posts till 10k

*pulls up a chair

preliminary congrats

interesting...

lol... prolly was some phishing going on or something like that.

:costumed- ooooh the drama!

Drama on GFY? That's unheard of!

waiting...

what do you expect them to say.. thats like a program saying "yeah we shave"

This is huge, huge news. I want to know more about this.

Who or what will you dedicate your 10k post to?

I'm pulling up a lawn chair for this one. :D

I'm taking Xanax, the anxiety is killing me :Oh crap

Hmm.. Never thought of it that way.
Was more intersteing in getting access to that super secret forum.

wonder what really ahppened

they got hacked. It's the only real explanation. Any company that "upgrades" the LIVE server is fucking retarded. There's always a dev box. You do the changes on the cloned dev box, if all goes well, you then do them to the live server.

We'll prolly never know. I think I'll call my bank in the morning and cancel my debit card just to be safe. I really dont need my accounts getting drained right now. :disgust

Sorry, keys to the secret forum has been pushed back to 20k posters only.

Was getting too crowded in there.

i noticed my epassporte email addy got hit hard with spam ever since epassporte had their "problem" , theres only one other company with that email.. so its either them or epassporte

Well, in that case, only about ~19,050 posts to go. I think I can get those in before the end of the month. Muahahaha. :1orglaugh :1orglaugh

i think i'll park my sig here...

I have a very possible explanation.

When you create a new password, it is added to a separate database. As you add new passwords, they get added to this separate database. The database that got scrambled was a completely different database. Now you're going to ask "why wouldn't they just retrieve the password from the storage database?" That would be a huge security risk on your behalf.

After taking a moment to analyze the "evidence", I concluded there are 2 possible logical explanations to all this:

1. They are telling the truth (there were some database problems)

The database got corrupted, stuff like that happens. Normally what happens in a situation like that everyone panics for a min, then someone in the group realizes, "Wait a min, don't we have a backup from last night?" Database gets restored, missing data since the backup is recovered from the log files. End result: Everything is back to normal. However, everything was not back to normal, everything got recovered except the passwords. Also, it's worth noting, that certain accounts were not effected at all by this "database problem." I don't see any logical explanation for that under this scenario.


2. There was a hacking attempt (which may or may not have been successful)

Hacking attempt was detected and narrowed down to certain accounts. For example, brute force attack was detected, and a list of accounts with failed logins in the past 24 hours was compiled. As a precaution, passwords to effected accounts were changed to minimize possible damage. This explains why only certain accounts were effected.


I guess there are also other possible explanations, like programmer error for example. Programmer was doing work on the database, and accidently wiped out half the passwords. But in my opinion they would all fall into "1" category, database corruption that can be easilly recovered.

passwords stored in high security databases often use encryption ...

so yes its possible they can't read your password, but can verify if it is the same one previously used ...

LOL :1orglaugh :thumbsup

same here, congratzzzzzzz! why did you sign offline with only 4 posts to go :Oh crap

oh the humanity!

Smokey mentioned the spam, I see lots of people crying about epass spam now so it makes you wonder.

this is more like a tragi-comedy to me

See sig.

where's the love ? from epass ref ?

Spin is everywhere. Nowadays even with solid evidence it's hard to disprove the "spin"

if you don't trust epassposte, stop using them. I'll personally lower my balance by 90%

Congrats Alex you're almost a greenie:)

I never had any problems with my pass word, so this one sounds logical.

Makes sense to me.

bump here for you all:)

that sucks.... but epass has some problems with DB

damn epass has been taking a beating recently

Is it wise to mention that they sent me a new password but I still use my old one with zero problems?

Probably not - please ignore that......

It could be that they just have a database table with all your previous passwords ie.

user - Fred Blogs

previous passords - pass1, pass2, pass3

They then wouldnt have known what the current one should be.

In fact if you put your mind to it there are a dozen explanations

I am still in process of withdrawing 7000 from my epassporte account. The fact that I can take only 300 dollars a day is sort of annoying. Worse than that is when it takes 6 days to get the money. That is way to long.