Today when I checked my earnings on DT I found that all my current earnings ($87) were converted in credits. When i was still on my account somebody started to buy images from the site using my acount/credits. I imideately changed the password ... but nothing... the ''Shopping match'' did not cease (probally he didn't log out ).
   I had contacted DT using the phone number but nothing... the phone operations are closed until monday, eventually i send them a mail... but that can take weeks to get an answer.

THERE IS ANOTHER WAY to contact DT. faster??? or what to do?

PS after this incident i changed all my paswords on every stock site including mail.

 
   

Oh wow that's rough. I hope they refund you!

The downloading still continue without nothing I can do.... very very frustrating 

They obviously need a password reset to force a user on the same account to sign out and have to sign back in. It seems pretty obvious that it should. I hope this is the case with other sites or what's the point of regularly changing passwords?

Have you posted on their own forum too?

The question is, how could someone hack your account. It might be interesting, if you have used an FTP program, or the web-uploader or a special upload service. In the latter, I see the greatest risk. But even FTP programs can not be used with encrypted password in most agencies. Or maybe you have entered your password on a public computer? Or maybe Dreamstime was hacked? Could be the worst case!

That's what we'd all like to know, and of course never will.   My own guess is that companies like Dreamstime are increasingly vulnerable to insiders, or semi-inside 'partners', as they've made their business ever more complicated while at the same time paying less attention to the low level details.  All those shadowy "partner" sites must have some degree of access, and who knows who works at them, or who's hanging around in their offices.  The constantly changing pools of outsourced reviewers probably have some network access too.  And of course the IT work is let out to a 'trusted' contractor who significantly underbid the last guy.

This is happening all over the place and companies are being forced to face up to the real cost of keeping data secure while still using it.

Quote from: roede-orm on December 12, 2015, 19:30

The question is, how could someone hack your account

Typically the user's own security is the issue when accounts get hacked. Maybe they accessed their account via unencrypted shared public wifi, or using compromised proxies. Or a Windows  or Android device they used has malware.

Quote from: nicku on December 12, 2015, 11:46

PS after this incident i changed all my paswords on every stock site including mail.

Unless you know how the account was compromised this may not be adequate.

That's all true, but note that in this case the scammer had to be someone who wanted image files, and  understood how DT works in terms of credits vs. dollars.   Not the typical coffee-shop hacker snagging passwords over Wi-Fi.