Database Breach - An Update

[EWM333]

In response to post #31699195. #31709590, #31710865, #31717215, #31727420, #31727725, #31727755, #31735675, #31736475, #31737125, #31745975, #31747430, #31762590, #31770575, #31770655, #31770875, #31775185, #31778925, #31779245, #31780640, #31785130, #31785185, #31786765, #31806700, #31808850, #31811630, #31817170, #31846715, #31849190 are all replies on the same post.

rickman wrote: If you are reading this Robin, know this: the community is supportive BECAUSE you share this stuff outright, clearly, and with incredible haste. If you treated us like Sony did in December of 2012, knowing the problem and denying it for two weeks or more, we'd probably be a lot less kind. There is also this to consider: You told us EXACTLY what, who, when, and how, as soon as you could, and in plain, simple terminology. I (and most likely about 10,000,000 others) appreciate a straightforward answer when there is an issue. But MOST IMPORTANTLY, you are kind and humble about it. If someone was mad at the employees of Nexus after your immaculate behavior, They are clearly not the kind of individual that we should be associated with as a user base. I personally love this site for a myriad of reasons, to explain it would take a ten+ page essay to enumerate all of the reasons why. To be clear though, the biggest reason, THE STAFF TREATS THE USER BASE LIKE PEOPLE. Despite there being 10,000,000 of us, we don't feel like faceless numbers. And that is because you seem to CARE. Don't stop doing that, and this awesome community will probably never devolve.

Thank you for being the best you can be.
Richard.

JZSquared wrote: ^This sums up my feelings exactly. I couldn't have said it better myself.

Lokie7 wrote: I second this, entirely. Well said.

Netsplite wrote: ^ +1

ZedLeppelin wrote: A wee bit verbose, (and I know verbose!), but rather well said and pretty damn accurate. The Nexus staff treats people like people, not numbers.

Inboundwhisper wrote: +1

Inboundwhisper wrote: +1

Aricole wrote: +1

lordmanticore wrote: +1

btgbullseye wrote: +1

xenonblade wrote: +1

AlexZander40 wrote: Well said. May the modding goodness continue.

DFX2K9 wrote: Agreed. no matter who you are, and how much money you've got, you're going to get a breach at some point. At least you salted the passwords, and use a hashing algorithm..

More then I can say for my local Library's system. A breach in THAT database would be catastrophic (note, it sends you your old password via email, that should give you an idea of how terrible it is)

Legion563 wrote: +1.

ExtremeMod911 wrote: Absolutely :)

Domifax wrote: +1

Bernt wrote: Totally agree :)

Dragodian777 wrote: "Ditto"...well said.

Saltamontes1980 wrote: +1
I concur, thank you Dark0ne.

dagstar132 wrote: good point well made. transparency in operation and intention is paramount.

Thanks for sharing.

Dag

JD777 wrote: +(1 X infinity) :)

JD777 wrote: Sorry double post but no delete button. :(

MTZGG wrote: Ad Victoriam.

Mycu wrote: 100% agreed.

Mindprobe24 wrote: +1, nice words dude ;)

Jn_Panower wrote: +1 !

Stargazer2893 wrote: +1

Erez747 wrote: +1 Couldn't have said it better myself. :)

Slimysumocow wrote: Definitely +1 for the wonderful Dark0ne and the rest of the Nexus team! Thank you guys!

well said Richard, this is a great community. Thanks Robin for giving modders and gamers a way to play games on a higher level

[Zaldir]

In response to post #31840670.

chaosangel239 wrote: how do I contact the admins for help changing my password? I can't remember my nexus password, I have it on auto-fill, I'm finding the form to change it really confusing.

I clicked on change password in my account but when I filled everything in it said "you already have that email account registered", then I put my email password (But left new email blank) in the top section with my auto-filled nexus password in the bottom section and got "your security key is incorrect" It wants my email plus 2 passwords, one of which I don't know, to change my password, what do I do? please help.

Changing your password while logged in assumes you know the current password. There are two things you can do:

1. Since your password is saved in your browser, you can find it by;
Chrome: Settings, "Show Advanced Settings", "Manage passwords". Find NexusMods, and hover over the *** password, and click "show".
Firefox: Preferences, Security, Saved Passwords..., click "Show Passwords", and find NexusMods in the list.
2. Log out of NexusMods, and when on the login screen, click "Forgotten Password?". Here, you can reset your password. This assumes you still have access to the e-mail you used to register.

[ADragonCalledGeorge]

In response to post #31733220. #31773735 is also a reply to the same post.

ADragonCalledGeorge wrote: First of all I wanted to thank you Dark0ne for all your help in making the Nexus what it is today! Skyrim is my favourite game of all time and I love using mods and looking through new mods and watching mod reviews on YouTube etc. Shame I can't make mods myself but I'm nowhere near smart enough. Anyhow, I ran into a slight problem.

Basically my account is very very old (2 or 3 years old. At the time I used an alternative email address to my current one since I got a new one after a while and I forgot the password and stuff to that account. I also can't seem to remember this password since I had my PC set to remember this password automatically.

I want to change my password and email address but I cannot remember my details so I am afraid I cannot change them. I was wondering what I should do now. I tried recovering my email through the official methods (I have Yahoo!Mail) but nothing works.

Any thoughts on what I should do next? I payed for Premium membership ages ago so I would hate to lose that functionality if I make a new password.

Many thanks in advance and keep up the great work!! :)

TesaPlus wrote: Since you set up your browser to remember passwords, you should be able to retrieve them. For Firefox it is something like " Edit -> Preferences -> Securtity -> Saved Passwords ".

Thank you! I will try that out and see if that works. :)

[MooseUpNorth]

In response to post #31699195. #31709590, #31710865, #31717215, #31727420, #31727725, #31727755, #31735675, #31736475, #31737125, #31745975, #31747430, #31762590, #31770575, #31770655, #31770875, #31775185, #31778925, #31779245, #31780640, #31785130, #31785185, #31786765, #31806700, #31808850, #31811630, #31817170, #31846715, #31849190, #31856815 are all replies on the same post.

rickman wrote: If you are reading this Robin, know this: the community is supportive BECAUSE you share this stuff outright, clearly, and with incredible haste. If you treated us like Sony did in December of 2012, knowing the problem and denying it for two weeks or more, we'd probably be a lot less kind. There is also this to consider: You told us EXACTLY what, who, when, and how, as soon as you could, and in plain, simple terminology. I (and most likely about 10,000,000 others) appreciate a straightforward answer when there is an issue. But MOST IMPORTANTLY, you are kind and humble about it. If someone was mad at the employees of Nexus after your immaculate behavior, They are clearly not the kind of individual that we should be associated with as a user base. I personally love this site for a myriad of reasons, to explain it would take a ten+ page essay to enumerate all of the reasons why. To be clear though, the biggest reason, THE STAFF TREATS THE USER BASE LIKE PEOPLE. Despite there being 10,000,000 of us, we don't feel like faceless numbers. And that is because you seem to CARE. Don't stop doing that, and this awesome community will probably never devolve.

Thank you for being the best you can be.
Richard.

JZSquared wrote: ^This sums up my feelings exactly. I couldn't have said it better myself.

Lokie7 wrote: I second this, entirely. Well said.

Netsplite wrote: ^ +1

ZedLeppelin wrote: A wee bit verbose, (and I know verbose!), but rather well said and pretty damn accurate. The Nexus staff treats people like people, not numbers.

Inboundwhisper wrote: +1

Inboundwhisper wrote: +1

Aricole wrote: +1

lordmanticore wrote: +1

btgbullseye wrote: +1

xenonblade wrote: +1

AlexZander40 wrote: Well said. May the modding goodness continue.

DFX2K9 wrote: Agreed. no matter who you are, and how much money you've got, you're going to get a breach at some point. At least you salted the passwords, and use a hashing algorithm..

More then I can say for my local Library's system. A breach in THAT database would be catastrophic (note, it sends you your old password via email, that should give you an idea of how terrible it is)

Legion563 wrote: +1.

ExtremeMod911 wrote: Absolutely :)

Domifax wrote: +1

Bernt wrote: Totally agree :)

Dragodian777 wrote: "Ditto"...well said.

Saltamontes1980 wrote: +1
I concur, thank you Dark0ne.

dagstar132 wrote: good point well made. transparency in operation and intention is paramount.

Thanks for sharing.

Dag

JD777 wrote: +(1 X infinity) :)

JD777 wrote: Sorry double post but no delete button. :(

MTZGG wrote: Ad Victoriam.

Mycu wrote: 100% agreed.

Mindprobe24 wrote: +1, nice words dude ;)

Jn_Panower wrote: +1 !

Stargazer2893 wrote: +1

Erez747 wrote: +1 Couldn't have said it better myself. :)

Slimysumocow wrote: Definitely +1 for the wonderful Dark0ne and the rest of the Nexus team! Thank you guys!

EWM333 wrote: well said Richard, this is a great community. Thanks Robin for giving modders and gamers a way to play games on a higher level

Very well said. +1

[Ghekor]

In response to post #31758340.

Krevitz wrote: Thank you for the information.
Is there any link between the malicious dsound.dll, and the dsound.dll which allow to access the console command in TW3?

Yup was thinking the same thing this is the only dsound.dll file on my PC(located at system32 folder) but nothing else..and its the one that was required for TW3.

[NotoriousPyro]

Can we get SSL too?

[Bram1970]

In response to post #31699195. #31709590, #31710865, #31717215, #31727420, #31727725, #31727755, #31735675, #31736475, #31737125, #31745975, #31747430, #31762590, #31770575, #31770655, #31770875, #31775185, #31778925, #31779245, #31780640, #31785130, #31785185, #31786765, #31806700, #31808850, #31811630, #31817170, #31846715, #31849190, #31856815, #31866030 are all replies on the same post.

rickman wrote: If you are reading this Robin, know this: the community is supportive BECAUSE you share this stuff outright, clearly, and with incredible haste. If you treated us like Sony did in December of 2012, knowing the problem and denying it for two weeks or more, we'd probably be a lot less kind. There is also this to consider: You told us EXACTLY what, who, when, and how, as soon as you could, and in plain, simple terminology. I (and most likely about 10,000,000 others) appreciate a straightforward answer when there is an issue. But MOST IMPORTANTLY, you are kind and humble about it. If someone was mad at the employees of Nexus after your immaculate behavior, They are clearly not the kind of individual that we should be associated with as a user base. I personally love this site for a myriad of reasons, to explain it would take a ten+ page essay to enumerate all of the reasons why. To be clear though, the biggest reason, THE STAFF TREATS THE USER BASE LIKE PEOPLE. Despite there being 10,000,000 of us, we don't feel like faceless numbers. And that is because you seem to CARE. Don't stop doing that, and this awesome community will probably never devolve.

Thank you for being the best you can be.
Richard.

JZSquared wrote: ^This sums up my feelings exactly. I couldn't have said it better myself.

Lokie7 wrote: I second this, entirely. Well said.

Netsplite wrote: ^ +1

ZedLeppelin wrote: A wee bit verbose, (and I know verbose!), but rather well said and pretty damn accurate. The Nexus staff treats people like people, not numbers.

Inboundwhisper wrote: +1

Inboundwhisper wrote: +1

Aricole wrote: +1

lordmanticore wrote: +1

btgbullseye wrote: +1

xenonblade wrote: +1

AlexZander40 wrote: Well said. May the modding goodness continue.

DFX2K9 wrote: Agreed. no matter who you are, and how much money you've got, you're going to get a breach at some point. At least you salted the passwords, and use a hashing algorithm..

More then I can say for my local Library's system. A breach in THAT database would be catastrophic (note, it sends you your old password via email, that should give you an idea of how terrible it is)

Legion563 wrote: +1.

ExtremeMod911 wrote: Absolutely :)

Domifax wrote: +1

Bernt wrote: Totally agree :)

Dragodian777 wrote: "Ditto"...well said.

Saltamontes1980 wrote: +1
I concur, thank you Dark0ne.

dagstar132 wrote: good point well made. transparency in operation and intention is paramount.

Thanks for sharing.

Dag

JD777 wrote: +(1 X infinity) :)

JD777 wrote: Sorry double post but no delete button. :(

MTZGG wrote: Ad Victoriam.

Mycu wrote: 100% agreed.

Mindprobe24 wrote: +1, nice words dude ;)

Jn_Panower wrote: +1 !

Stargazer2893 wrote: +1

Erez747 wrote: +1 Couldn't have said it better myself. :)

Slimysumocow wrote: Definitely +1 for the wonderful Dark0ne and the rest of the Nexus team! Thank you guys!

EWM333 wrote: well said Richard, this is a great community. Thanks Robin for giving modders and gamers a way to play games on a higher level

MooseUpNorth wrote: Very well said. +1

+1

[grimgagorim]

In response to post #31699195. #31709590, #31710865, #31717215, #31727420, #31727725, #31727755, #31735675, #31736475, #31737125, #31745975, #31747430, #31762590, #31770575, #31770655, #31770875, #31775185, #31778925, #31779245, #31780640, #31785130, #31785185, #31786765, #31806700, #31808850, #31811630, #31817170, #31846715, #31849190, #31856815, #31866030, #31877395 are all replies on the same post.

rickman wrote: If you are reading this Robin, know this: the community is supportive BECAUSE you share this stuff outright, clearly, and with incredible haste. If you treated us like Sony did in December of 2012, knowing the problem and denying it for two weeks or more, we'd probably be a lot less kind. There is also this to consider: You told us EXACTLY what, who, when, and how, as soon as you could, and in plain, simple terminology. I (and most likely about 10,000,000 others) appreciate a straightforward answer when there is an issue. But MOST IMPORTANTLY, you are kind and humble about it. If someone was mad at the employees of Nexus after your immaculate behavior, They are clearly not the kind of individual that we should be associated with as a user base. I personally love this site for a myriad of reasons, to explain it would take a ten+ page essay to enumerate all of the reasons why. To be clear though, the biggest reason, THE STAFF TREATS THE USER BASE LIKE PEOPLE. Despite there being 10,000,000 of us, we don't feel like faceless numbers. And that is because you seem to CARE. Don't stop doing that, and this awesome community will probably never devolve.

Thank you for being the best you can be.
Richard.

JZSquared wrote: ^This sums up my feelings exactly. I couldn't have said it better myself.

Lokie7 wrote: I second this, entirely. Well said.

Netsplite wrote: ^ +1

ZedLeppelin wrote: A wee bit verbose, (and I know verbose!), but rather well said and pretty damn accurate. The Nexus staff treats people like people, not numbers.

Inboundwhisper wrote: +1

Inboundwhisper wrote: +1

Aricole wrote: +1

lordmanticore wrote: +1

btgbullseye wrote: +1

xenonblade wrote: +1

AlexZander40 wrote: Well said. May the modding goodness continue.

DFX2K9 wrote: Agreed. no matter who you are, and how much money you've got, you're going to get a breach at some point. At least you salted the passwords, and use a hashing algorithm..

More then I can say for my local Library's system. A breach in THAT database would be catastrophic (note, it sends you your old password via email, that should give you an idea of how terrible it is)

Legion563 wrote: +1.

ExtremeMod911 wrote: Absolutely :)

Domifax wrote: +1

Bernt wrote: Totally agree :)

Dragodian777 wrote: "Ditto"...well said.

Saltamontes1980 wrote: +1
I concur, thank you Dark0ne.

dagstar132 wrote: good point well made. transparency in operation and intention is paramount.

Thanks for sharing.

Dag

JD777 wrote: +(1 X infinity) :)

JD777 wrote: Sorry double post but no delete button. :(

MTZGG wrote: Ad Victoriam.

Mycu wrote: 100% agreed.

Mindprobe24 wrote: +1, nice words dude ;)

Jn_Panower wrote: +1 !

Stargazer2893 wrote: +1

Erez747 wrote: +1 Couldn't have said it better myself. :)

Slimysumocow wrote: Definitely +1 for the wonderful Dark0ne and the rest of the Nexus team! Thank you guys!

EWM333 wrote: well said Richard, this is a great community. Thanks Robin for giving modders and gamers a way to play games on a higher level

MooseUpNorth wrote: Very well said. +1

Bram1970 wrote: +1

+1 well said, well said

[grimgagorim]

In response to post #31733220. #31773735, #31860630 are all replies on the same post.

ADragonCalledGeorge wrote: First of all I wanted to thank you Dark0ne for all your help in making the Nexus what it is today! Skyrim is my favourite game of all time and I love using mods and looking through new mods and watching mod reviews on YouTube etc. Shame I can't make mods myself but I'm nowhere near smart enough. Anyhow, I ran into a slight problem.

Basically my account is very very old (2 or 3 years old. At the time I used an alternative email address to my current one since I got a new one after a while and I forgot the password and stuff to that account. I also can't seem to remember this password since I had my PC set to remember this password automatically.

I want to change my password and email address but I cannot remember my details so I am afraid I cannot change them. I was wondering what I should do now. I tried recovering my email through the official methods (I have Yahoo!Mail) but nothing works.

Any thoughts on what I should do next? I payed for Premium membership ages ago so I would hate to lose that functionality if I make a new password.

Many thanks in advance and keep up the great work!! :)

TesaPlus wrote: Since you set up your browser to remember passwords, you should be able to retrieve them. For Firefox it is something like " Edit -> Preferences -> Securtity -> Saved Passwords ".

ADragonCalledGeorge wrote: Thank you! I will try that out and see if that works. :)

i would also suggest Keepass2 or any similar, secure programm, that stores your website passwords OUTSIDE of the browser.

Accessing you stored passwords is simple otherwise.

Furthermore, keepass2 can (in addition with a firefox/chrome addon) fill out the password fields on websites. It fits on a USB , so you can even take them with you.

[Terafir]

In response to post #31699195. #31709590, #31710865, #31717215, #31727420, #31727725, #31727755, #31735675, #31736475, #31737125, #31745975, #31747430, #31762590, #31770575, #31770655, #31770875, #31775185, #31778925, #31779245, #31780640, #31785130, #31785185, #31786765, #31806700, #31808850, #31811630, #31817170, #31846715, #31849190, #31856815, #31866030, #31877395, #31877985 are all replies on the same post.

rickman wrote: If you are reading this Robin, know this: the community is supportive BECAUSE you share this stuff outright, clearly, and with incredible haste. If you treated us like Sony did in December of 2012, knowing the problem and denying it for two weeks or more, we'd probably be a lot less kind. There is also this to consider: You told us EXACTLY what, who, when, and how, as soon as you could, and in plain, simple terminology. I (and most likely about 10,000,000 others) appreciate a straightforward answer when there is an issue. But MOST IMPORTANTLY, you are kind and humble about it. If someone was mad at the employees of Nexus after your immaculate behavior, They are clearly not the kind of individual that we should be associated with as a user base. I personally love this site for a myriad of reasons, to explain it would take a ten+ page essay to enumerate all of the reasons why. To be clear though, the biggest reason, THE STAFF TREATS THE USER BASE LIKE PEOPLE. Despite there being 10,000,000 of us, we don't feel like faceless numbers. And that is because you seem to CARE. Don't stop doing that, and this awesome community will probably never devolve.

Thank you for being the best you can be.
Richard.

JZSquared wrote: ^This sums up my feelings exactly. I couldn't have said it better myself.

Lokie7 wrote: I second this, entirely. Well said.

Netsplite wrote: ^ +1

ZedLeppelin wrote: A wee bit verbose, (and I know verbose!), but rather well said and pretty damn accurate. The Nexus staff treats people like people, not numbers.

Inboundwhisper wrote: +1

Inboundwhisper wrote: +1

Aricole wrote: +1

lordmanticore wrote: +1

btgbullseye wrote: +1

xenonblade wrote: +1

AlexZander40 wrote: Well said. May the modding goodness continue.

DFX2K9 wrote: Agreed. no matter who you are, and how much money you've got, you're going to get a breach at some point. At least you salted the passwords, and use a hashing algorithm..

More then I can say for my local Library's system. A breach in THAT database would be catastrophic (note, it sends you your old password via email, that should give you an idea of how terrible it is)

Legion563 wrote: +1.

ExtremeMod911 wrote: Absolutely :)

Domifax wrote: +1

Bernt wrote: Totally agree :)

Dragodian777 wrote: "Ditto"...well said.

Saltamontes1980 wrote: +1
I concur, thank you Dark0ne.

dagstar132 wrote: good point well made. transparency in operation and intention is paramount.

Thanks for sharing.

Dag

JD777 wrote: +(1 X infinity) :)

JD777 wrote: Sorry double post but no delete button. :(

MTZGG wrote: Ad Victoriam.

Mycu wrote: 100% agreed.

Mindprobe24 wrote: +1, nice words dude ;)

Jn_Panower wrote: +1 !

Stargazer2893 wrote: +1

Erez747 wrote: +1 Couldn't have said it better myself. :)

Slimysumocow wrote: Definitely +1 for the wonderful Dark0ne and the rest of the Nexus team! Thank you guys!

EWM333 wrote: well said Richard, this is a great community. Thanks Robin for giving modders and gamers a way to play games on a higher level

MooseUpNorth wrote: Very well said. +1

Bram1970 wrote: +1

grimgagorim wrote: +1 well said, well said

I only signed up for this site about 3 weeks ago. So it made me a bit wary on what was going on. But, as everything was extremely clearly said and given, I have no concerns whatsoever about the security of the site.

It's not often that things are spoken so clearly and honestly from any company.

+1