star dust
Member of DD Central
Posts: 2,998
Likes: 3,531
|
Post by star dust on Feb 10, 2020 13:15:09 GMT
I've just received an email from AC which I thought might be worth posting here, just in case......
|
|
|
|
Post by Deleted on Feb 10, 2020 14:57:06 GMT
AC's opportunity to clean out our accounts and blame it on the clone.
Part of an IT department's due diligence is to buy up all similar domain names and park them.
AC's incompetence shines through, with every error.
|
|
ceejay
Posts: 975 
Likes: 1,149
|
Post by ceejay on Feb 10, 2020 15:09:08 GMT
AC's opportunity to clean out our accounts and blame it on the clone.
Part of an IT department's due diligence is to buy up all similar domain names and park them.
AC's incompetence shines through, with every error.
ALL similar domain names? Do you have any idea how many that would be? I'm very sorry for whatever experiences may have scarred you, but this is silly.
|
|
oldtimer
Member of DD Central
Posts: 211
Likes: 156
|
Post by oldtimer on Feb 10, 2020 15:16:44 GMT
AC's opportunity to clean out our accounts and blame it on the clone.
Part of an IT department's due diligence is to buy up all similar domain names and park them.
AC's incompetence shines through, with every error.
ALL similar domain names? Do you have any idea how many that would be? I'm very sorry for whatever experiences may have scarred you, but this is silly. UK companies can no longer own .eu domains anyway since we left the eu - unless they have a company in europe.
|
|
ashtondav
Member of DD Central
Posts: 1,814
Likes: 1,092
|
Post by ashtondav on Feb 10, 2020 15:48:45 GMT
AC's opportunity to clean out our accounts and blame it on the clone.
Part of an IT department's due diligence is to buy up all similar domain names and park them.
AC's incompetence shines through, with every error.
Oh yes Assetzcapital.ai i bet they they forgot about registering that (Anguilla. HTF could they miss that one.)
|
|
agent69
Member of DD Central
Posts: 6,043
Likes: 4,437
|
Post by agent69 on Feb 10, 2020 15:54:21 GMT
Has anyone looked at the cloned site to see what it is like? I'm tempted, but fearful of what might be lurking there.
|
|
|
|
Post by brightspark on Feb 10, 2020 16:21:02 GMT
Are you sure you haven't done so already?
|
|
star dust
Member of DD Central
Posts: 2,998
Likes: 3,531
|
Post by star dust on Feb 10, 2020 16:24:55 GMT
PRAISE BE TO TWO FACTOR AUTHENTICATION Not necessarily, it could still be possible to log in, deposit, withdraw, buy and sell for up to 30 days without realising you don't need it. I have no intention of finding out whether you might notice any other differences 
|
|
Greenwood2
Member of DD Central
Posts: 4,385
Likes: 2,784
|
Post by Greenwood2 on Feb 10, 2020 16:25:53 GMT
My password manager doesn't like it!
|
|
iRobot
Member of DD Central
Posts: 1,680
Likes: 2,477
|
Post by iRobot on Feb 10, 2020 16:29:07 GMT
PRAISE BE TO TWO FACTOR AUTHENTICATION Not necessarily, it could still be possible to log in, deposit, withdraw, buy and sell for up to 30 days without realising you don't need it. I have no intention of finding out whether you might notice any other differences I thought there were certain activities which required a mandatory pin code? Or did they all get relaxed?? I haven't kept track as my balance is happily sitting there - nothing added (apart from interest), nothing withdrawn.
|
|
star dust
Member of DD Central
Posts: 2,998
Likes: 3,531
|
Post by star dust on Feb 10, 2020 16:41:20 GMT
Not necessarily, it could still be possible to log in, deposit, withdraw, buy and sell for up to 30 days without realising you don't need it. I have no intention of finding out whether you might notice any other differences Not sure about that. Not my understanding of how 2FA works. Certainly not the case if you’re requesting 2FA everytime. And if you’re relying on a cookie for quick access I’d imagine it’s pretty hard to get that cookie from your devices cached file onto another device using the cloned eu site. And how clever that cookie is in being device and browser etc specific. Point being you, the AC investor, might not notice the difference because the cloned site does not ask you for 2FA codes. If you have it set to be requested every single time, then you would notice, I wonder how many have it set up like that? And iRobot I believe you also have to use it for votes and selling at a discount, not sure what else. However, you can still do a lot without it, although I presume deposits won't arrive if you have the correct account numbers and details.
|
|
alanh
Posts: 556
Likes: 560
|
Post by alanh on Feb 10, 2020 16:50:39 GMT
AC's opportunity to clean out our accounts and blame it on the clone.
Part of an IT department's due diligence is to buy up all similar domain names and park them.
AC's incompetence shines through, with every error.
 Have you been down the pub at lunchtime?
|
|
dave2
Member of DD Central
Posts: 177
Likes: 163
|
Post by dave2 on Feb 10, 2020 16:59:22 GMT
I hope that it was just a fake "front end" engineered to grab user id and password.
Anybody who signed in through the .eu website should realise that their e-mail and password has been compromised.
|
|
iRobot
Member of DD Central
Posts: 1,680
Likes: 2,477
|
Post by iRobot on Feb 10, 2020 17:12:51 GMT
Thanks star dust . If nothing else this has prompted me to understand where the pinch-points in the 2FA process may be. From my profile: I don't have the box ticked, but 'Withdrawing funds' was my primary concern. Selling at all (regardless of discount or not) without confirmation would be another concern, but at least it shouldn't be possible for the funds to be removed without (further) haplessness on the part of the customer. |
|
iRobot
Member of DD Central
Posts: 1,680
Likes: 2,477
|
Post by iRobot on Feb 10, 2020 17:16:30 GMT
I hope that it was just a fake "front end" engineered to grab user id and password. Anybody who signed in through the .eu website should realise that their e-mail and password has been compromised. How would the email be compromised? The email address (used to register the account) would be known, sure - but why compromised? Unless you're using the same password for multiple requirements. But no one does that, do they ....
|
|
Have you been down the pub at lunchtime?