anyone heard about the latest nats security breach
 

someone on icq just told me there is another major security flaw with nats that they are trying to cover up.... no bullshit just trying to verify the information

from what i am told all nats clients got sent letters that they had to contact tmm about this issue because tmm didnt want it being made public again like the last time they had a breach

any nats users able to confirm/deny this please?

either fake drama or 7 pages...

i dont know if it is true or not that is why i am hoping someone who is using nats v4 can confirm if they were contacted about this or not and requested to contact tmm directly without bringing it to the boards

lets see hackers boards, they are here and once some info like this is out, full hole is published on hackers boards ... nothing there now ... :)

Haven't heard anything but, why would a sponsor bother to come on here and confirm this info?

or maybe you are talking about that several sql dumps? oops ... :winkwink:

well nats v4 was rewritten from the beginning so it isnt to hard to beleive there are some issues in the software

just wanting someone to verify they were contacted by tmm about a flaw in nats v4 that had to be kept quiet

true tmm does have a reputation for cancelling accounts of programs using nats that go public with this kind of infos

wouldn't surprise me tbh... and you'll never hear from anyone with NATS v4 if it is true

Yeah, n4 has or had a security issue. They sent an email to nats4 clients about it, like they should do. Nobody is trying to hide anything.

Not all clients have v4 yet.. and being "new software" it will have issues. This is why tmm is slowly installing it across clients, and running both v3 and v4 together.


Nobody is trying to hide anything. TMM shouldn't come here and update affiliates. That's the programs job, IF they feel they need to say anything.

what was/is this new security issue then?

affiliates of nats programs should have every right to know about security breaches especially considering this isnt the first time something like this has happened with nats

Hit up the v4 programs you push and ask them. The one or two people you, might, push that are public version of 4, will probably answer you if you promote them.

You are wrong to think that tmm should tell you about security breaches or problems.

What if my v4 was public? And I wasn't to update due to vacation, so they can't update my install for a few extra days. You want them to broadcast a security issue is known, and... well, that would be rather stupid and piss off the real people that mater.

Every program you push, and that is 100% of the programs you have ever pushed, have had security breach and major errors, and they never tell affiliates. If it screws with your pay, most do some money credit, but overall you never get told about the real issue.

By law, they have to inform you if it's a privacy issue. And by ethics if it screws with your sales. If not, people correct it and move on, like they should.

By your thinking, every hosting company that hosts any program, should start posting here and update us all on every security hole they find and close. We should only get a few 100 posts a week filling up the board..

If it impacts affiliates then it should be posted here. Last time the programs were left to tell me my password might be compromised, well, we all know how that turned out. :disgust

If it impacts your privacy, that's different, then it's a maybe, but really it's still not TMM's job, it's the Programs jobs. And either way, they should 'never' post a current ongoing security issue on an open forum... Period.

The last issue, not all programs got breached. So you wouldn't have gotten notices from everyone. I didn't send out a notice, but I know many that did, and I think tmm did as well.

The more exposure it gets, the more dangerous it becomes. I'd say if you're a NATS4 program affiliate you should just let it slide and let TMM do their job. :2 cents:

so NATS fucks up again...

do we need to change our passwords now? :helpme

in the mean time our personal data could be getting spread across the interwebs

after the last major flaw nats had you would have thought they could have at least notified everyone there WAS an issue and it was being resolved

every program has bugs, microsoft is reporting their few times per month, so why be so angry about tmm and nats? their program is top notch ... as far i know this hole is not newbie hack, you need some hacking skills to get into, so its not that big as before when every self named hacker uses username and password and all he needs was finding the right url ... i say keep up the great work and go http://toomuchmedia.com go! :thumbsup

They did notify everyone.. I got the notice like 4 times.

well i dont know about you but im not worried about the 'newbie' finding my information and not knowing what to do with it........

im concerned about the PRO hacker getting access to it and knowing EXACTLY what to do with it!!!!!

if you are not running paysite or program, nobody is interested in you, affiliates has no value, or very small. point of hacking it is taking database of paying clients, where do you think all the emails getting spam came from? people says "i signed only to this site and i am receiving spam every day, the owners are spammers!" ... no, the owners dont need to be spammers, the owners just have hole in the system ... :2 cents:

You shouldn't listen to rumors then.. It makes it so you start attacking posts that slander great software, and have zero proof to back up anything you say.


BTW ANYONE READING THIS: NATS v4 DID NOT have a security breach of any kind. They sent an email notice to v4 clients to get an update for a bug.

Thanks for the entertainment.. now get back to work.

so they did have a security issue a few posts up but all of a sudden it was just a 'bug'

did a rogue employee tell you that?

The mail that went out yesterday had nothing to do with any aspect of your original post. There was no security issue. There was no "cover up". There was no "rogue employee".

I'm making it clear here that I advise you to not post completely untrue things you do not have proof of.

Yeah, I was corrected.. So I'm correcting you.

I called it a security issue, when security wise it was no issue. It was simply a bug, causing a problem.

i didnt post anything untrue i asked for clarification then got told there was a security breach by someone

perhaps if you were more open to communicating with us you wouldnt have to make posts like that

yet again instead of communicating when a potential issue with nats is made public you turn to threats to try and stifle the information being made public

classy

Did I miss the "Make FakeNick The Affiliate Spokesman" election?

Shit! I would have voted for BoneProne :pimp

now we have to wait for the onslaught of nats affiliate program owners posting in this thread that everything is fine and there was no issue..... just like with the last major issue nats had.......

I answered your question in my reply also. I'm also a phone call away. Much easier than starting a drama fest here with a bunch of lies.

nothing in tv? :upsidedow

Orrrrr..... You could not post RUMORS that are false, that you have no clue about.

And again, even if I say security issue, it doesn't mean security breach of your private information. Which is the ONLY THING they are responsible for telling you about.

Let see, get nats, mpa, every host, hell mysql and php, all need to start updating you on public forms of every change, security issue, bug fix.. to make YOU happy... Yes, that sounds real logical....

I for got to ask, which nats v4 program do you push?

So if people are entitled to know this info, shouldn't we be entitled to know who the fuck is asking.

Pussy posting under a fake nick means dick, hope you know that.

I am considering this an accusation without proof! That is what we call it when people come here and say "Well my mothers, sisters, brothers, cousins, best friend told me this" so it must be true.

You want to make posts like this, post proof, post the person telling you this shit, or even better... if all these NATs clients got letters, post one. I have, and have access to several NATs installs.

Did we get letters? Yes
Was there a security breach? NO!

Consider this a severe warning. Accusations of covering shit up, security leaks, or just things that are generally meant to hurt someone's business are taken seriously. I would protect you in the same way if the roles were reversed.