Full Tilt Account hacked for $40,000

[Harv72b]

[ QUOTE ]
Another tip is doing something like this.
You use the password lol donkaments.
Your name is John Doe.
Your lucky hand is J9.
First make lol donkaments one word loldonkaments.
Then change some letters to numbers: 1o1donkam3nts for example.
Then add your initials JDl101donkam3nts
Then add your lucly hand JD101donkam3ntsJ9
Then for fulltiltpoker use ftp_JD101donkam3ntsJ9
Then for pokerstars use ps_JD101donkam3ntsJ9
Then for partypoker use pp_JD101donkam3ntsJ9
etc.
It wont help to protect you from keyloggers but It will make you have a safer password and this is what we are using at work, but not exactly the same ofc [img]/images/graemlins/wink.gif[/img]

[/ QUOTE ]

Open a random book. Take the first letter from each paragraph. Or sentence. Or last letter. You get the idea.

If you are infected with a keylogger or are just worried about that possibility, open up a text editor whenever you're about to log in, and alternate your typing between the login window and the text editor. Pain in the butt, but it'd be a much bigger pain in the butt to reconstruct your password from your keystrokes this way.

[Kevroc]

[ QUOTE ]
[ QUOTE ]
Another tip is doing something like this.
You use the password lol donkaments.
Your name is John Doe.
Your lucky hand is J9.
First make lol donkaments one word loldonkaments.
Then change some letters to numbers: 1o1donkam3nts for example.
Then add your initials JDl101donkam3nts
Then add your lucly hand JD101donkam3ntsJ9
Then for fulltiltpoker use ftp_JD101donkam3ntsJ9
Then for pokerstars use ps_JD101donkam3ntsJ9
Then for partypoker use pp_JD101donkam3ntsJ9
etc.
It wont help to protect you from keyloggers but It will make you have a safer password and this is what we are using at work, but not exactly the same ofc [img]/images/graemlins/wink.gif[/img]

[/ QUOTE ]

Open a random book. Take the first letter from each paragraph. Or sentence. Or last letter. You get the idea.

If you are infected with a keylogger or are just worried about that possibility, open up a text editor whenever you're about to log in, and alternate your typing between the login window and the text editor. Pain in the butt, but it'd be a much bigger pain in the butt to reconstruct your password from your keystrokes this way.

[/ QUOTE ]

I liked the copy paste from text file idea. But, someone posted that it isnt foolproof.

But, the above idea of opening a text window and alternately typing sounds very good.

Could this be useful in preventing keyloggers?

[swarm]

Isn't this often a case of the hacker hacking into your email and then using the lost password feature on Full Tilt to email them access to change the password.

Email accounts are far more susceptible to hacks. You have to have both strong password and strong security questions answers to keep them out.

Too many of you make your AIM and EMAIL information public.

How strong was your email password?

Security Questions?

Obviously the hacker got into your email, can you verify with Full Tilt or the email provider to see if an email for a "Lost Password" was sent to your account.

Smart hackers sit in your email and delete the evidence of this.

[shahmat]

[ QUOTE ]

How strong was your email password?

Security Questions?

Obviously the hacker got into your email, can you verify with Full Tilt or the email provider to see if an email for a "Lost Password" was sent to your account.

Smart hackers sit in your email and delete the evidence of this.

[/ QUOTE ]

I don't believe he got the password through a password request sent to my email, as I was still able to login using my regular password. A regular password request would send out a completely new password and the old one would never be known, I haven't checked with full tilt's security but I would hope this would be the case. My personal email password probably wasn't the strongest, it definitely wasn't guessable but I guess it could have been brute forced.

[shahmat]

[ QUOTE ]
[ QUOTE ]
[ QUOTE ]
Another tip is doing something like this.
You use the password lol donkaments.
Your name is John Doe.
Your lucky hand is J9.
First make lol donkaments one word loldonkaments.
Then change some letters to numbers: 1o1donkam3nts for example.
Then add your initials JDl101donkam3nts
Then add your lucly hand JD101donkam3ntsJ9
Then for fulltiltpoker use ftp_JD101donkam3ntsJ9
Then for pokerstars use ps_JD101donkam3ntsJ9
Then for partypoker use pp_JD101donkam3ntsJ9
etc.
It wont help to protect you from keyloggers but It will make you have a safer password and this is what we are using at work, but not exactly the same ofc [img]/images/graemlins/wink.gif[/img]

[/ QUOTE ]

Open a random book. Take the first letter from each paragraph. Or sentence. Or last letter. You get the idea.

If you are infected with a keylogger or are just worried about that possibility, open up a text editor whenever you're about to log in, and alternate your typing between the login window and the text editor. Pain in the butt, but it'd be a much bigger pain in the butt to reconstruct your password from your keystrokes this way.

[/ QUOTE ]

I liked the copy paste from text file idea. But, someone posted that it isnt foolproof.

But, the above idea of opening a text window and alternately typing sounds very good.

Could this be useful in preventing keyloggers?

[/ QUOTE ]

If they can log your keystrokes, they can also log when you change window focus, it would be fairly trivial for them to figure out which window you were typing into.