Professional Documents
Culture Documents
BrickLink Discussion Forum - All Replies To Message
BrickLink Discussion Forum - All Replies To Message
Author: Admin_Russell
Posted: Nov 8, 2023 13:07 BrickLink
Subject: Update on November 3rd incident ID Card
Viewed: 4660 times
Topic: Administrative Admin_Russell
BrickLink Administrator
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Author: Nubs_Select
Posted: Nov 8, 2023 13:09 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 200 times Nubs_Select (3381)
Topic: Administrative
Location: Canada, Ontario
Author: breesy
Posted: Nov 8, 2023 20:44 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 86 times breesy (198)
Topic: Administrative
Location: Australia, Western Australia
A couple of thoughts:
1. Prioritise adding 2FA. The community has been calling for this for years.
2. It was pretty clear from the outset that this was likely a credential stuffing
incident, both because the attackers accessed mostly low feedback accounts, and
because Bricklink had zero defenses against such an attack.
3. Bricklink overreacted. I understand that the attackers were using these accounts
to post fake listings and scam buyers, and that required a more urgent response,
but a password reset would have sufficed rather than an extended period of downtime.
Thanks
Author: Khyron68
Posted: Nov 8, 2023 23:52 BrickLink
Subject: Re: Update on November 3rd incident ID Card
Viewed: 64 times
Topic: Administrative Khyron68 (22)
A couple of thoughts:
1. Prioritise adding 2FA. The community has been calling for this for years.
2. It was pretty clear from the outset that this was likely a credential stuffing
incident, both because the attackers accessed mostly low feedback accounts, and
because Bricklink had zero defenses against such an attack.
3. Bricklink overreacted. I understand that the attackers were using these accounts
to post fake listings and scam buyers, and that required a more urgent response,
but a password reset would have sufficed rather than an extended period of downtime.
Thanks
1. Agreed
2. You are ignoring the ransom threat.
3. YOU ARE IGNORING THE RANSOM THREAT. BL did NOT overreact. A password reset
would have solved 1 and only 1 of the issues. They clearly stated that they
shut down to investigate and should be commended, NOT chastized for it.
4. BL is a "reliable, performant and secure marketplace to trade Lego Parts."
Wish granted
Author: lostcarpark
Posted: Nov 9, 2023 02:54 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 61 times lostcarpark (229)
Topic: Administrative
Location: Ireland, Meath
Store: LostCarPark
1. Agreed
2. You are ignoring the ransom threat.
3. YOU ARE IGNORING THE RANSOM THREAT. BL did NOT overreact. A password reset
would have solved 1 and only 1 of the issues. They clearly stated that they
shut down to investigate and should be commended, NOT chastized for it.
4. BL is a "reliable, performant and secure marketplace to trade Lego Parts."
Wish granted
The announcement (probably wisely) does not give details of the ransom threat.
If a ransomer wants me to take their threat seriously, they need to include some
information that they couldn't know without having access to the website
internals. As I say we don't know what information the ransomer had.
As I don't run a global marketplace with millions of users, and the consequences
of a Ransomer carrying out any such threat would be much lower, I feel I can
safely ignore these threats.
Author: CE_Uday
Posted: Nov 9, 2023 13:56 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 50 times CE_Uday
Topic: Administrative
BrickLink Administrator
Author: Give.Me.A.Brick
Posted: Nov 9, 2023 03:53 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 66 times Give.Me.A.Brick (10480)
Topic: Administrative
Location: Portugal
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
Author: popsicle
Posted: Nov 9, 2023 10:30 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 103 times popsicle (6557)
Topic: Administrative
Store: ConstrucToys
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
I knew a couple that began to take the “Cambridge” view of the term. Sadly
ended with them separating. Oh well, they at least didn't have to think about
the term's true meaning
Author: TorontoLego
Posted: Nov 9, 2023 11:26 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 60 times TorontoLego (5747)
Topic: Administrative
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
I knew a couple that began to take the “Cambridge” view of the term. Sadly
ended with them separating. Oh well, they at least didn't have to think about
Author: popsicle
Posted: Nov 9, 2023 11:58 BrickLink
Subject: Re: Update on ID Card
November 3rd incident
Viewed: 68 times popsicle (6557)
Topic: Administrative
Store: ConstrucToys
Signed: popsicle
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
I knew a couple that began to take the “Cambridge” view of the term. Sadly
ended with them separating. Oh well, they at least didn't have to think about
the term's true meaning
Author: Give.Me.A.Brick
Posted: Nov 9, 2023 14:02 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 48 times Give.Me.A.Brick (10480)
Topic: Administrative
Location: Portugal
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
I knew a couple that began to take the “Cambridge” view of the term. Sadly
ended with them separating. Oh well, they at least didn't have to think about
No no no.
Author: popsicle
Posted: Nov 9, 2023 14:24 BrickLink
Subject: Re: Update on ID Card
November 3rd incident
Viewed: 55 times popsicle (6557)
Topic: Administrative
Store: ConstrucToys
As a non native English speaker I've also been corrected for the use of "a
couple" referring as 2, 3 or 4 things. But Cambridge corroborates that "a
couple" means "a few" in certain contexts:
https://dictionary.cambridge.org/dictionary/english/couple
I knew a couple that began to take the “Cambridge” view of the term. Sadly
ended with them separating. Oh well, they at least didn't have to think about
the term's true meaning
No no no.
-Cory
Author: r0bb
Posted: Nov 9, 2023 14:37 BrickLink
Subject: Re: Update on ID Card
November 3rd incident
Viewed: 50 times r0bb (34)
Topic: Administrative
Wow, I don't think you ever offered anything for a couple of cents on here!
Author: TheBrickGuys
Posted: Nov 8, 2023 13:11 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 134 times TheBrickGuys (12840)
Topic: Administrative
Store: TheBrickGuys
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Thanks for working to get us back up and running quickly. It was surprising just
how much we depend on BrickLink, I felt literally lost at times without it so
thanks again.
Jim.
Author: Stuart9
Posted: Nov 8, 2023 13:16 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 86 times Stuart9 (956)
Topic: Administrative
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Author: Tracyd
Posted: Nov 8, 2023 13:17 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 91 times Tracyd (392)
Topic: Administrative
Store: Tracyd's
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Thank you and great job on stopping the issue when it became apparent and finding
out what was impacted.
Author: 3001Bricks
Posted: Nov 8, 2023 13:21 BrickLink
Subject: Re: Update on November 3rd ID Card
incident
Viewed: 68 times 3001Bricks (2273)
Topic: Administrative
Location: USA, Arkansas
Store: 3001Bricks
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Thank you!
Author: jbricks
Posted: Nov 8, 2023 13:23 BrickLink
Subject: Re: November 3rd incident new safety ID Card
features.
Viewed: 82 times jbricks (17853)
Topic: Administrative
Location: Netherlands, Gelderland
Store: jbricks