Data breach in SteemConnect - revoke access for your safety - Utopian hacked?

in #utopian-io6 years ago (edited)

I've been seeing several discord servers mentioning a data breach in SteemConnect.

For now it's best to revoke all tokens and remove all authorizations to all apps. Head over to

https://v2.steemconnect.com/apps/authorized

Capture.PNG

Better safe than sorry. Further information will surface later.

Update: it seems Utopian got hacked, don't panic, funds are safe, only posting
Capture.PNG

#busy #steemmakers
6 years ago in #utopian-io by
$2.66
  • Past Payouts $2.66, 0.00 TRX
  • - Author $2.29, 0.00 TRX
  • - Curators $0.37, 0.00 TRX
26 votes
Reply 8
Sort:  
  • Trending
    • [-]
     6 years ago 

    darnation.

    Luckily, I just checked and it turns out I never gave an OAuth token to anyone. I just always log in manually when I use the services XD

    Hope they figure out what happened and which app went rogue.

    I've seen several different posts and some of them are suggesting a data breach on Steemconnect's side, while other's suggest one of the apps lots of people have Authorized to post on their behalf went rogue and to disconnect all the tokens till they find out which one.

    $1.11
    • Past Payouts $1.11, 0.00 TRX
    • - Author $0.83, 0.00 TRX
    • - Curators $0.28, 0.00 TRX
    1 vote
    Reply
    [-]
     6 years ago (edited)

    Cool, An AI bot upvoted me !

    This is good, If the AI like me, I might have a better chance of surviving the future AI Uprising ! XD

    $0.00
      Reply
      [-]
       6 years ago (edited)

      As others have mentioned elsewhere if you are especially concerned about your account you may also seek to update your master keys to revoke any prior keys that were being used.

      While revoking your apps' authorizations will stop those apps from being able to use your account it will not solve the problem if SteemConnect as a platform has been compromised. In addition if the SteemConnect platform is compromised you may be offering your Active or Master key to the hacker by signing in with it.

      Please note that this would be near worse case situation but is still a potential threat scenario. Please use your own best judgement with protecting your account's access. I'm certain more official word will be coming today.

      [Just seen @jefpatat's update about Utopian message. Please disregard my message if this is simply a token leak.]

      $0.00
        Reply
        [-]
         6 years ago 

        It is not steemconnect that has been hacked but utopian-io... And saying hacked is not a very precise word because the problem was from inside the platform.... Some tokens had been leaked from the inside of utopian-io and with that someone got the control of few keys to downvote or upvote some posts without their consensus. No danger on your wallets but it is for sure a good thing to revoke your tokens from all platforms and change your password. This was in short the last update given by utopian-io. Utopian-io blocked this process and revoked all posting tokens so now everything should be safe. They are investigating on who did this action of leaking tokens and will work on some safety measures to protect all tokens stored in their database. This stab was kind of needed so that they increase safety from the inside

        $0.00
          Reply

          Coin Marketplace

          STEEM 0.29
          TRX 0.11
          JST 0.033
          BTC 63458.69
          ETH 3084.37
          USDT 1.00
          SBD 3.99