just opened my email account @ gmail and found out that my BigStock account has been hacked because I have an email from BigStock saying that my email address was changed to [email protected]

entered BigStock and it looks like the hacker got a plan that now has 98 credits and downloaded 16 pictures already

after logging out I can't log in anymore because they changed the password

cool stuff BigStock

Woah, that's a problem. Keep us posted.

Hi Luis Santos,

Your account email address at Bigstock has been changed to [email protected].

Please use this new email address when logging into your Bigstock account. If you did not request this change or have any questions, just reply to this email.
   
   

Cheers,
The Bigstock Team
http://www.bigstockphoto.com

just replied, will see how it goes

Pretty gutsy for the thief to use a fraud.su name. Wonder why that didnt send a red flag to bigstock? Hope you get it straightened out.

Hey Luis, I hope you thought about changing all of your passwords!  Sorry that happened to you, and I hope you can let us know that Bigstock is standing by you.

Have you used one of those third party tools / apps which require you to effectively give them your login details ? Or logged in using public or open wifi ?

6 days now

a few replies but still cannot log in and portfolio not online as well, not great indeed, even if they are being extra safe it is taking too long IMO

It's a federal holiday here in the U.S. on Monday and some offices are closed too.  Not sure about BS but it could delay results further too.  I hope they get it resolved for you soon.

important notice

BigStock just sent me an email saying they believe it was a breach due to a website, I highly recommend you guys (contributors) to check if there is any place in the internet with your FTP credentials, I don't know how but there is one site that is displaying my username/email/password for over 20 agencies, really insane, somebody must have given that information, BigStock believes it was a third party service that uploads our images to multiple stock agencies but the most weird is that I never use that type of services, always on my pc and with filezilla

This is concerning. Just because of this very reason, I never signed up or used any third party uploaders/sales report programs. This is just scary.

Do you know which "site" it was? How do you know that it was for over 20 agencies if you dont mind me asking?

other contributor, it never ends, tons of txts loaded with this information

guess I won't use it again, will stick with agency uploader(s)

Quote from: luissantos84 on February 19, 2014, 13:23

guess I won't use it again, will stick with agency uploader(s)

Or FTP software like Fetch (Mac) or FTP Voyager (what I used to use on Windows pre 2008)

how can we be sure that those aren't going to be hacked?

Quote from: Jo Ann Snover on February 19, 2014, 13:45

Quote from: luissantos84 on February 19, 2014, 13:23

guess I won't use it again, will stick with agency uploader(s)

Or FTP software like Fetch (Mac) or FTP Voyager (what I used to use on Windows pre 2008)

how can we be sure that those aren't going to be hacked?

In the case of Fetch, because the data that would be of interest to hackers isn't stored centrally anywhere (it's on my systems behind a firewall) and the software lives on my Macs having been purchased from a developer who would, I trust, inform users if somehow an update contained malware.

I didn't want to say anything because of past debates about Mac and security. But here's in the news:  http://news.yahoo.com/apple-readies-security-fix-mac-ios-flaw-214138710.html

"Cluley said Apple's iOS update fixed "a critical vulnerability that could allow hackers to intercept what should have been secure communications between your iPhone and SSL-protected websites. That means, potentially, online attackers could grab your user ID or passwords as you attempted to log into popular websites."

Do you have a Mac Luis?

As for Filezilla, if you download from a trusted site, like the source, it's fine. If you just search for "downlad filezilla" you could be at risk. I use cnet.com or tucows. But don't blame the software product for something that's got another cause.

Here's one cause: Trojan.Silentbanker is a Trojan horse that records keystrokes, captures screen images, and steals confidential financial information to send to the remote attacker.  Make sure your computer isn't still infected (if it was?)

Just because something steals passwords from one software, don't assume it was THAT software that caused it. Most of the time people get attacked by visiting infected sites or opening a file with the trojan built into something innocent looking.

But no matter what, run a virus software that checks before loading the system files, (in safe mode for you Windows users) or it can just regenerate itself on the next boot.

Filezilla usernames and passwords are indeed saved on your harddisk in plain  text. (C: Users/(your username)/Appdata/Roaming/Filezilla/Sitemanager.xml)
But data (usernames and passwords included) are also send over the internet unencrypted.
(That is with all FTP software afaik. It is possible to make a secured connection with FTP, but  not with the stockagencies. This must be done from both sides. They all use standard FTP and that is not encrypted. Correct me if I am wrong.)

For better safety you can choose to not save the passwords in Filezilla (or other FTP client), but to use software like Keepass and copy and paste your passwords each time when you need them. Delete the logs afterwards.

Or install a portable version of FTP client on usb-stick and start from there. This way passwords are not saved on your harddisk. (Of course this method is useless when you have your usb-stick added to your computer all the time.)

But using all these solutions, this way the usernames, passwords and data are still send unencrypted over the internet. So perhaps the best (but also most timeconsuming) solution is logging in at an agency and using their upload features.

Filezilla is opensource software, so when data should be encrypted, info about the encryption is also open. As the maker says about this: �It is not a bug, it is a feature.�

By the way: When someone has got access to the useraccount on your computer it is also possible to make your saved passwords visible in Firefox. To avoid people from doing so, you can set a masterpassword in Firefox. (You can find this in: Extra/Options/Safety)
I am not sure about how other browsers handle this.

Do you have a Mac Luis?

As for Filezilla, if you download from a trusted site, like the source, it's fine. If you just search for "downlad filezilla" you could be at risk. I use cnet.com or tucows. But don't blame the software product for something that's got another cause.

don't have a Mac and I have downloaded Filezilla from their website not from a torrent somewhere, its freeware anyway

case is solved and portfolio online for a few days

As Colette wrote, plain FTP - in use at every agency except Veer - transmits login and password unencrypted over the internet; and some web uploaders too. So it's easy for an hacker to capture that information not just from your pc but from packet sniffing.

So the only secure thing to do would be to use two different passwords, one for safe https login and one for FTP, but unfortunately most agencies don't; I guess hackers are more interested in stealing our money than uploading pictures to our account.

which FTP program are you using?

About the why and who of the hacking I have no idea. It is done by accident I suppose. Hackers search for money. Stealing images doesn't make much sense, (although perhaps it is possible that some websites with dubious content get their unwatermarked images this way. There is a huge market for all sorts of data, so it is also sellable.)

People are always the weakest chain. When they find someone using the same password for all the agencies AND paypal account� bingo!
The reason to try to avoid this is, of course, the trouble that it brings, not the risk of stolen images in the first place.
Most likely (or is it propably?) Luis has done nothing wrong, but only had bad luck.

Hi all,

My Bigstock account got hacked, similar to Luis, except the email and FTP is now newbielink:mailto:[email protected] [nonactive]. That's changed from my original email, and my earning have been taken too. I know this because the Bigstock account is open on another computer.

Can't log back in once I log out since the hacker changed my login password.

The forum is quite long. I shall try and read the threads, but if someone could help in the meantime, that'll be great.

Thanks in advance.

I just got an email from them saying that I can reset my password by following a link. The link was legit, but I had not requested my password be reset. I first went to the site and saw that I had been logged out and it wouldn't let me log in with my current password. I changed the password and sent them an email.

But when I tried to login a second time, it doesn't work. So bigstock thought I stealed my own password or what ?

So, I mailed the support and wait for an answer.

I just received three emails from Bigstock:

- the first email prompts me to resetting my password and announces the second one
- the second email provides a link to reset my password
- the third email knows nothing about the first two and announces me that my password was changed and I should contact support if I didn't request the change.

After reading the first email, I was wondering if it was authentic but when I went to sign in with the old password, I couldn't so I was forced to changed it.

I changed my password at bigstock, cause someone changed the password from my girlfriend at bigstock. She resetted the password and now it works. But someone looked in her account, has now her adress and paypal-mail. Not good. She asked bigstock why this could happen and wait for a respond.

This is not a Bigstock problem, unfortunately it is much bigger than that. In this case you should change all passwords on the double, gmail, PayPal..........

Here is an interesting article about this year's compromised emails. You can check if yours was compromised here and/or here.

We got these e-mails today, too. Does anyone actually have knowledge of what the concerns are here? The e-mails were suspicious and we didn't act on any links in them. But we did end up having to request a password change and making it. 

They are quick to say it's not Bigstock related - Who did it originate from then if it wasn't big stock? How many email an passwords are involved? Hundreds? Thousands? 

Bigstock is now part of Shutterstock - is it SS's fault? Is my SS account in danger too?

I don't trust these emails so I went to the site (did not click any link on any email) and changed my password that way.

It's true, it is not BS related. I myself sent them an email on an irritated tone and now I regret it.

I left a link above about how these gangsters sell stolen accounts for 50 roubles.

Btw, how could you change your password without clicking on the link in the email? Once they send out the email they also block your account so you can't sign in with the old password any more?

So many of us - I failed to log in to Bigstock with my old password yesterday. Then saw the same password reset email. I reset and logged in without problems afterwards, my earnings are untouched and so is my paypal account. Sorry to read someone's payouts are gone

I also got those two emails. As I don't like clicking on links in emails (even if they do look legit) I sent a message to Bigstock support if this really came from them. No answer yet...
But, as others, I can't log in to my BS account any more with my old password...

same here!

No reaction from bigstock, but for me problem solved. clicked->forgot password. after this I got mail from bigstock to reset the password. I can login with new password.

I received an answer too, they are just protecting us.

We apologize for the confusion.

This was not a breach to the Bigstock database.

There have been high profile breaches that have been made public recently and we occasionally scan this data programmatically in an effort to protect our users. As a precaution, we have reset passwords on accounts that may or may not have been compromised.

We can confirm that data in your account does not appear to have been changed.

We see that you were able to change your password and login.

Please let us know if you have any additional questions.

Kindest regards,