[ARTadmin]

Hey all,

Over the next few days we will be implementing some changes to our forum password strength and password expiration policies. To make sure you continue having the best experience possible on the community, we regularly monitor the site and the Internet to keep everyone's account information safe. We've recently become aware of a potential risk to some accounts coming from outside of this community. Just to be safe, we are implementing the following changes to improve security even further:

1) We are asking everyone to change their passwords (and will force a one time reset). Along with every user on the forum, new passwords will need to be more complex, and can't be simple words (sorry, you can't have "fluffy" as your password anymore!). Please use a password unique to this community. Reusing passwords can expose your account indirectly when other websites (Twitter, Linkedin, Badoo, etc) are compromised; and

2) Your passwords will expire on a 365 day basis. When you login on the 366th day, you will have to change it.

We'll also be sending out an email to users to let them know about the changes, in upcoming weeks.

Thanks all,
Helena
Community Management

 

[Mel_Robertson]

 

[Susan Mulno]

Thanks for letting us know.

 

[Liz]

Wow, this is only a forum, not Fort Knox. I don't like complicated passwords, I can never remember them.

 

[just]

I'm old and have memory problems.

 

[abt2k15]

number 1 reason for password insecurity is the user himself. kind of dumb and surplus change imho. so the only other method other than fishing someones
password ( malware and/ or shady websites ) left is brute force. to cope with brute force the key is length....

well anyway if it turns out to become too unconvenient for my taste i always have the option to not come back so let´s see how annoying it will get.


cheers

 

[ARTadmin]

A good piece of advice, to help in remembering the more complex password, is to do a phrase instead of just randomly adding in the extra requirements.

Example: BoiledCabbageis#1!

That will stick in your in your mind better.

 

[Mel_Robertson]

@AllAdmins is the SECURITY AND DATA BREACH NOTIFICATION - genuine ?
the link leads us to an auto sales website called verticalscope.com which is actually a referral URL for www.enom.com based in ONTARIO, very very strange...

 

[ARTadmin]

@AllAdmins is the SECURITY AND DATA BREACH NOTIFICATION - genuine ?
the link leads us to an auto sales website called verticalscope.com which is actually a referral URL for www.enom.com based in ONTARIO, very very strange...

This site is owned by VerticalScope. It is not a referral URL, it is the company name and URL.

Check the Terms Of Use in the footer.

 

[Mel_Robertson]

Yeah it's PLC registered as VerticalScope INC but VerticalScope.com is a referral URL of ENOM, INC which means our data is shared with, ENOM - but ENOM isn't mentioned in the TOS (See here)
thats irrelevant I just wanted to know what was going on normally when a site loses their members personal data theres some kind of *******SORRY******* but I guess not in this case

 

[ARTadmin]

I am not sure what you are asking. ENOM is just a domain registrar.

A domain name registrar is an organization or commercial entity that manages the reservation of Internet domain names. A domain name registrar must be accredited by a generic top-level domain (gTLD) registry and/or a country code top-level domain (ccTLD) registry. The management is done in accordance with the guidelines of the designated domain name registries. https://en.wikipedia.org/wiki/Domain_name_registrar

 

[Mel_Robertson]

I am not sure what you are asking.

I'm SHOCKED you don't know what I'm saying to you!
before I became successful as an artist I built social websites which had over 30.000 members and I see the community on here is amazing, the individuals I've come to get to know are not only great artists but beautiful people who share the most intimate details of their lives with the board and in return get great support.
and what do the owners get from the site? money, they get money reaped from adverts and all I asked is an acknowledgement a simple "sorry" for the mistrust in data loss, YOU lost OUR personal information, the terms we signed up to was a 2 way thing we ENTRUSTED YOU with our personal information.
just SAY SORRY
Edited:
the fact I have to point this out is absurd?

 

[ARTadmin]

I'm SHOCKED you don't know what I'm saying to you!
before I became successful as an artist I built social websites which had over 30.000 members and I see the community on here is amazing, the individuals I've come to get to know are not only great artists but beautiful people who share the most intimate details of their lives with the board and in return get great support.
and what do the owners get from the site? money, they get money reaped from adverts and all I asked is an acknowledgement a simple "sorry" for the mistrust in data loss, YOU lost OUR personal information, the terms we signed up to was a 2 way thing we ENTRUSTED YOU with our personal information.
just SAY SORRY
Edited:
the fact I have to point this out is absurd?

My question was regarding your comment concerning ENOM. I was simply explaining that ENON is just a domain registrar.

Art Admin made an announcement back on the 14th here.

I am truly sorry that you are frustrated, I am too.

I will be moving these comments to that thread.

 

[Liz]

I just want to say I do not like the new password requirements, by tomorrow I probably won't remember my new password so if you guys won't see me around you know why.

 

[TerryCurley]

Write it down. I had to.

 

[Liz]

Write it down. I had to.

I have a bunch of passwords written down and I end up shuffling through papers trying to find the right one for the right account, ha, ha. Anyway, several hours later and I still remember it (to my surprise). Maybe it will stick in my brain, I hope.

 

[Desdichado]

I'm old enough to suffer memory loss so I bought a small diary that I keep near my pc at home. I just put anything to do with computer stuff in it. My wife does the same. Saves a lot of hassle. It's easy enough to disguise passwords if you wish,and nobody will need to know mine anyway, I'm not in charge of national security. :smile:

 

[just]

I have a bunch of passwords written down and I end up shuffling through papers trying to find the right one for the right account, ha, ha. Anyway, several hours later and I still remember it (to my surprise). Maybe it will stick in my brain, I hope.

So you have already started studying for the password test?

 

[Liz]

So you have already started studying for the password test?

Yup, and so far I'm passing, ha ha.

 

[ARTadmin]

Hey all,

first off, personally, i love this forum. I do a lot of art when im not here at the office.
secondly, this is frustrating, and I am very sorry for the aggravation. in all transparency is concerned, we are legally obligated to change passwords after a breach has taken place. we have fixed our end of the breach but we still needed to issue a password reset regardless. If the requirements are too much right now, we can revisit this later and make things a bit easier, no problem. but for now, we are issuing these to get things resolved on all ends, and to help protect your accounts for the future.

I am more then happy to assist anyone here with any issues they have or answer questions, as well as resolve any issues with the transition. also, we can talk art while im doing so! again, I personally apologize. it was a third party breach, and came from an outside source. though its been resolved, we understand the need for an apology. here is the website that explains a little more on what is being done to fix things: http://www.verticalscope.com/about-us/security-update.html

let me know what you peeps need, Ill be happy to assist with it.

~Shane