VansAirForceForums  
Home > VansAirForceForums

- POSTING RULES
- Donate yearly (please).
- Advertise in here!

- Today's Posts | Insert Pics

  #1  
Old 08-28-2019, 10:18 AM
wnplt wnplt is offline
 
Join Date: Feb 2013
Location: Idaho
Posts: 134
Default Vans fake Phishing

Just got a phishing email from a spoof vansairforce email. Said I had a private message. Pretended I had been logged out of vans and wanted me to log back in to receive message. Looked very legit. Be careful! Web address came up
http forlums.com


[ED. Spammers are very clever. Treat every email carefully please. v/r,dr]

Last edited by DeltaRomeo : 08-28-2019 at 08:30 PM.
Reply With Quote
  #2  
Old 08-28-2019, 10:57 AM
Bavafa Bavafa is offline
 
Join Date: Oct 2007
Location: Sacramento, CA
Posts: 3,013
Default

Thanks for the heads up.
They can't even leave us alone here????
There are some profanity words come to my mind that I can't utter it on this page.
__________________
Mehrdad
N825SM RV7A - IO360M1B - SOLD
N825MS RV14A - IO390 - Flying
Dues paid
Reply With Quote
  #3  
Old 08-28-2019, 11:03 AM
danny danny is offline
 
Join Date: Jul 2005
Location: puyallup, wa
Posts: 61
Default ****!

I got one and signed in. Think I'll change my password. Should've been suspicious when I saw the word "forlum".
Danny
Reply With Quote
  #4  
Old 08-28-2019, 11:05 AM
wnplt wnplt is offline
 
Join Date: Feb 2013
Location: Idaho
Posts: 134
Default

Yep it was pretty convincing...
Reply With Quote
  #5  
Old 08-28-2019, 11:25 AM
rv8ch's Avatar
rv8ch rv8ch is offline
 
Join Date: Feb 2005
Location: LSGG
Posts: 2,616
Default Change password

Quote:
Originally Posted by danny View Post
I got one and signed in. Think I'll change my password. Should've been suspicious when I saw the word "forlum".
Danny
If you use the same username or password elsewhere, change the password there as well.

Small reminder, you should never use the same password on different sites.
__________________
Mickey Coggins
http://rv8.ch
"Hello, world!"
Reply With Quote
  #6  
Old 08-28-2019, 11:29 AM
N546RV's Avatar
N546RV N546RV is offline
 
Join Date: Aug 2010
Location: Houston, TX
Posts: 792
Default

Quote:
Originally Posted by rv8ch View Post
If you use the same username or password elsewhere, change the password there as well.

Small reminder, you should never use the same password on different sites.
And a reinforcement of the reminder: the people doing phishing don't care about accessing your VAF account, they just want a valid user/pass combo you've used anywhere, which they'll then try to use on things you care about, like your bank and credit card accounts.
__________________
Philip
-8 fuselage in progress (remember when I thought the wing kit had a lot of parts? HAHAHAHAHA)
http://rv.squawk1200.net
https://www.meetup.com/Houston-Area-RV-Enthusiasts/
Reply With Quote
  #7  
Old 08-28-2019, 11:41 AM
jacoby jacoby is offline
 
Join Date: Jul 2018
Location: WNC
Posts: 178
Default

Honestly, you should not put any private info into this forum. Or use passwords from other sites.

It's running vBulletin 3.6.8 which is, quite literally, 11 years behind in updates. Every one of the CVE vulns listed applies.

It's also running PHP 4.3.10 which is not supported and 15 years out of date. I'd post the list of CVE vulns but it's massive and just doesn't matter since it stopped receiving updates 31 Mar 2005.

And it's running IIS/6.0 which is vulnerable to CVE-2017-7269 which is a unpatchable 0-day remote takeover vulnerability.

On top of that, it doesn't run over https.

So, unless all those versions have been falsified to throw people off, it's a miracle that the site hasn't been compromised.

Edit: I do want to point out that these are the versions that the forum tells the world. It's not an uncommon practice to falsify these headers to throw off bots. The lack of https is real though.

[ed. All this stuff is slated for upgrade before the end of the year. v/r,dr]

Last edited by DeltaRomeo : 08-28-2019 at 08:30 PM.
Reply With Quote
  #8  
Old 08-28-2019, 12:43 PM
Pilot135pd's Avatar
Pilot135pd Pilot135pd is offline
 
Join Date: Jan 2019
Location: Ben Wheeler, TX
Posts: 420
Default

It happened to me this morning. I realized it was a scam when it asked me for my ID and password, when my Mac is setup to open the forum already logged in.
__________________
RV-8 N52VM : Dynon D-180, GTX327, SL40, Garmin 496 GPS, AP74 Autopilot, Titan 0-360A1A2N, Nickel Coated Cylinders, 2 Slick mags (both impulse coupled), engine preheater, Hartzell Plane-Power alternator, Hartzell HC-C2YR-1BFP constant speed, blended airfoil

Exempt by 3 out of the 10 ways but I still donated.
Reply With Quote
  #9  
Old 08-28-2019, 02:25 PM
chaskuss chaskuss is offline
 
Join Date: Mar 2005
Location: SE Florida
Posts: 1,462
Default

I had something a little different happen. A couple of weeks ago I was foolish enough to reply to a wanted to buy add here. My stupidity was that I posted my email address and phone number in my reply instead of Using a private message or an email response. Several hours later I realized my mistake and went and edited those items out of my reply. However by then the damage was done. Now I get about 20 phone calls a day from scam artists. Most of them claim to be representatives of this bank or that bank. They will claim that either my credit card or my checking account is overdrawn and that I need to make a payment immediately. Of course then they try to pump me for personal financial details. I could just block the phone numbers but they have multiple phone numbers so they'll just switch numbers. I simply added them to my address book and listed them as scammer one scammer two and so on.

Charlie
Reply With Quote
  #10  
Old 08-28-2019, 07:40 PM
94kb 94kb is offline
 
Join Date: Jan 2005
Location: Waco, Texas
Posts: 100
Default Phishing

Charlie, the same think happened to me. I accidentally posted by email address rather than the PM I intended to send. Within an hour a got an email asking if I wanted to send a check or pay with Paypal to hotmail account.
__________________
Kenneth Beene / Waco, Texas
RV-4 N63KB low wing
J-3 N2263M high wing
AS1 N777PJ bi wing
APRS WY0S
Reply With Quote
Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -6. The time now is 01:57 PM.


The VAFForums come to you courtesy Delta Romeo, LLC. By viewing and participating in them you agree to build your plane using standardized methods and practices and to fly it safely and in accordance with the laws governing the country you are located in.