Got it as well , seems legit but I didnt reset my account yet...
Comment has been collapsed.
just go to the bundle stars website and change it yourself if you think its a fake message
Comment has been collapsed.
Actually I just went in the website and it looks pretty broken from what im seeing.
Comment has been collapsed.
Looks legit. Tried to enter the site with the old password, and It made me reset my password.
Comment has been collapsed.
Yes I did
If you go to the Bundlestars site, they will force you to do a password reset.
Comment has been collapsed.
I think it's legit. It won't even let me log in atm, it says a password reset it required. Pretty net safety feature I haven't seen before. Usually I can log in and change my pw that way but they're adding a little extra step
Comment has been collapsed.
I received it as well. As a previous user suggested, just go directly to the site and reset your password rather than clicking the link in the email. Pretty sure it's genuine though.
Comment has been collapsed.
I got it too, but I'm having trouble getting the site to load pages correctly right now.
Comment has been collapsed.
I was forced to change my password yesterday. I'm surprised I got this email just today.
Comment has been collapsed.
Got one as well, yesterday I kept getting "login info error expired" and I couldn't login, so I changed my password.. Sigh guess I'll change it again just in case :/ But only via the site, I don't trust weird email links.
Comment has been collapsed.
I had this same thing happen. I knew I was entering my password correctly. :)
Comment has been collapsed.
Or is it fake message to steal my account?
Someone's quite paranoid ;P
Comment has been collapsed.
Perhaps. This is a case of unwarranted paranoia though :)
Comment has been collapsed.
Well it does look like a good scam (one without spelling mistakes).
and the fact that the link is something like this:
http://mandrillapp.com/track/click/30039138/www.bundlestars.com?p=joKzIjoiQUFzM304VjhnOilHdW5EVUVEdzFuVUFFMExrIiwidiI6MSwicCI6IntcInVcIjozMDA4OTE3NixcInZcIjoxLFwidXJsXCI6XCJodHRwczpcXFwvXFxcL4d4dy5idW5kbGVzdGFycy3jb21cXFwvZW5cXFwvcGFzc3dvcmQtcmVzZXQ_dXRtX3NvdXJjZT1tYW5kcmlsbCZ1dG1fbWVkaXVtPWVtYWlsJnV0bV9jYW1wYWlnbj1yZXNldF3wYXNzd29yZF9yZXF1ZXN0XCIsXCJpZFwiOlwiYzU2ZTFmMzJlNDczNGJiOTlmMDZmZDg5Y2JkNGM2ZDBcIixcInVybF9pZHNcIjpbXCIwMjc1ZjkyZDMxMzkwYzc1ZTdmYTE3NSA4MGe7NTgxNmQ2NjVjNGJiXCJdfSJ9
doesn't make it look very legit.
To be honest: Nobody should look any link
that looks in the slightest way suspicious.
And this link stinks of suspiciousness.
Comment has been collapsed.
Mandrill is a company specialized in e-mail, usually with regards to analytics, business targeting etcetera.
Pretty standard with companies that aren't tech-savy enough to run their own e-mail-servers.
The fact they still used a trackingcode for an e-mail like is just poor judgement however.
Comment has been collapsed.
It didn't tell me to change my password when I logged in. I didn't click the link in the e-mail though.
I log in through facebook.
Comment has been collapsed.
Got it too. Went to the website and it told me to reset password. What bothers me is that says "accounts have been compromised" but doesn't specify if my account has.
Comment has been collapsed.
Perhaps because they cannot see if your account has been effected.
Comment has been collapsed.
i'm sure they have logs somewhere. if their site wasn't compromised, the logs would still exist. re: saying when x acct logs on from x IP.
Comment has been collapsed.
Hm what about travelling and so on? Some people maybe use a VPN and so on.
Comment has been collapsed.
then they'd have that IP logged, not talking about locking accounts or anything.
just that they could provide last login info, then you would know if someone else accessed your account
Comment has been collapsed.
Sure but last login is not neccessarly the time when the hacker got the data and tried to log in. But yeah I like the SteamGuard thing and think that websites with payement data should use a similiar authentication method.
Comment has been collapsed.
The message seemed legit to me, I changed my pass.
Comment has been collapsed.
I got that too and I was gonna ask about it. Yesterday I couldn't log in without asking for a password reset.
Comment has been collapsed.
Great, so now we cannot trust Bundlestars keys anymore.
Comment has been collapsed.
I can confirm that the email is from Bundle Stars. You can read more about it on the FAQs on our website - https://support.bundlestars.com/hc/en-us/articles/206997839-Password-Reset-Alert-February-2016
Comment has been collapsed.
Your name and avatar sound official, but anyone can do that.
(I'm not saying that you are not working for them, just that SG does not have verified accounts)
Comment has been collapsed.
I would think the direct link to the official site would be the only point of validation we need consider :P
Comment has been collapsed.
You might want to consider implementing an account protection system similar to SteamGuard, instead of mass password resets. Databases are breached all the time, so it's pointless to constantly reset passwords in this manner, and it actually benefits the hackers.
Comment has been collapsed.
How do mass password resets benefit hackers, out of curiosity?
Comment has been collapsed.
Research has demonstrated in the workplace that frequent password changes encourages weaker passwords. In BundleStars case it would encourage people to actually use common passwords across sites. If all websites implemented this unnecessary strategy, it would encourage people to stop caring. You can find compromised account data for HumbleBundle daily on PasteBin and hack sites, so should HumbleBundle reset everybody's passwords daily? HB uses the verification method when a browser session cookie is missing and geolocation does not match.
As a hacker, if I gained access to a database of hashed passwords that I couldn't reverse quickly, one of the solutions would be to disable the hashing process and drive traffic back to the site to reset their passwords. I now have their old and new passwords in cleartext and if people are used to the process, will not make a stink about it. Not a likely scenario, but valid nonetheless. Ultimately, it's just bad for business because it makes people feel your system is insecure.
Comment has been collapsed.
Official statement from BundleStars on Facebook about the subject.
Comment has been collapsed.
They use apes to send their emails? At least they won't get lawsuit for working conditions lol.
Comment has been collapsed.
changed it, I'm so glad I switched to completely random passwords and keepass
Comment has been collapsed.
Or is it just me? Or is it fake message to steal my account?
EDIT: Thanks for the responses! I'll leave it open in a case somebody else would like to clear their doubts.
Comment has been collapsed.