Well, Northwest Dreams has been a member here for a number of years, so at least it's not someone who signed up two days ago. I also changed my password, just in case. On one hand, I can imagine SS not wanting to cause a panic by announcing a hack, on the other, based on what others here report, would they even have the capability of knowing there was a hack, given the sorry state the site is in?

Quote from: cathyslife on November 01, 2018, 16:03
On one hand, I can imagine SS not wanting to cause a panic by announcing a hack

I don't think there is anything to hide by not announcing it.
If this happened then its simple for SS to shoot emails requesting for immediate password change. By not doing so they will cause themselves in more trouble.

There have been hacks many a times, twitter announced it globally when it was hacked.

The SS crap!  same as usual and when you finally hear something from them, we hear it from somebody else!...I recon tens of thousands have changed all their passwords by now!

Fake news on SS? What next? Fake commissions/Sales ? 

This is certainly suspect and not the way this sort of problem should come to our attention.

Quote from: Artist on November 01, 2018, 15:58

Quote from: Shelma1 on November 01, 2018, 15:44
Alex just announced on the SS forum that there's no evidence of hacking.

This clearly shows random people making fake panic situations and forcing users to move to their side.
Its better to investigate first before coming to any conclusion.

Hacking costs Shutterstock £350 millions a week. I read it on a red bus so it must be true.
And I'm not even off-topic since this thread is all about fake news.

if you google a2zp30.com and search for Shutterstock you find tons and tons of stuff to download. Can anybody tell me, why Shutterstock does not stop this site?

I emailed Shutterstock and the response from the person I usually communicate with was that Shutterstock has not been hacked and  Shutterstock is not under any attack. However bad actors can try to do "account takeovers" if login credentials are similar to other services and if they have been leaked from somewhere.

But the point is: Shutterstock has NOT been hacked.

Quote from: Josephine on November 01, 2018, 18:46
if you google a2zp30.com and search for Shutterstock you find tons and tons of stuff to download. Can anybody tell me, why Shutterstock does not stop this site?

By posting that, you are just helping them.

Quote from: Artist on November 01, 2018, 15:31
Something fishy sounds here. There is no official msg from SS, as well as I don't see any issues. Everything is working normally here.

Moreover, there is also no announcement on their social media channels.
I am not sure how can NorthwestDreams randomly come and start topic about hack when no one faced it?

Waiting for announcement from SS and see where it goes.

I have received this from [email protected] this morning:

"At Shutterstock we are committed to protecting your personal information.

We have detected some irregular activity on your account. As a precaution, the password for account ————— has been reset.

Please visit https://accounts.shutterstock.com/credentials/forgot to create your new password. We recommend you change it to one that is secure and unique, and we also suggest using a different password for every online account you have.

If you have any questions, please contact [email protected].

Sincerely,
Shutterstock Support"

Not sure that it is related to the hack btw

Few days ago i received email from Shutterstock to change my password and i did it. But not following email links i went directly to Shutterstock site.

Quote from: cathyslife on November 01, 2018, 19:02

Quote from: Josephine on November 01, 2018, 18:46
if you google ******.*** and search for Shutterstock you find tons and tons of stuff to download. Can anybody tell me, why Shutterstock does not stop this site?

By posting that, you are just helping them.

Yep.

Just changed my password to something much stronger.

The contributor page is unreachable for me, anyone else?

Yes, I have the same problem.

There's no harm in changing the password to something stronger. I've had the same passwords for a number of years now and I certainly don't want anyone accessing my account, whether the hack is true or not.

I changed it anyway ... because it was an old password but, bruteforce targeting of user accounts isn't a "hack" so there very well could be some attempts ... but, it'd take years for them to even make a dent.

I've noticed for the past couple of weeks that when I go to the submit.shutterstock.com site the page won't load and it says unsecure site next to the web address. Then, when I refresh the page, it loads and brings up the https version of the address. Not sure if it's related, but had never encountered that before a couple of weeks ago.

Works for me now, hopefully unrelated to this "hacking" issue.

Someone comes here and announces a possible hack, without any evidence or references and no indication from SS that this is happening, and people start changing the passwords?

Imagine if the hack is real but it's not targeting the current password because they cannot do it, and instead are targeting the new password when people change it because they have found a way to do it?

Or trying to cause some panic to overload SS systems and take advantage of some weakness created then?

So, if I make any type of alarmist announcement will you follow it just because Leaf confirmed my contact, but not my information? This is all very strange.

Quote from: MicroVet on November 02, 2018, 06:41
Someone comes here and announces a possible hack, without any evidence or references and no indication from SS that this is happening, and people start changing the passwords?

Imagine if the hack is real but it's not targeting the current password because they cannot do it, and instead are targeting the new password when people change it because they have found a way to do it?

Or trying to cause some panic to overload SS systems and take advantage of some weakness created then?

So, if I make any type of alarmist announcement will you follow it just because Leaf confirmed my contact, but not my information? This is all very strange.

Yes, if there is any such hack then there is possibility of getting hacked when changing the passwords.
Leaf confirming the same gives the weight to the news but this doesn't mean to start following the same.
Till now, I too haven't found anything weird with SS.

People following news so quickly is bit worrying.

Related or not??  somebody I know with 45000 files and never a day under $100 have had absolutely ZERO movement during the last 24 hours, not even a 0.38C sale, zip!

Thats not normal! something is badly wrong with the site!

Quote from: MicroVet on November 02, 2018, 06:41
Someone comes here and announces a possible hack, without any evidence or references and no indication from SS that this is happening, and people start changing the passwords?

Imagine if the hack is real but it's not targeting the current password because they cannot do it, and instead are targeting the new password when people change it because they have found a way to do it?

Or trying to cause some panic to overload SS systems and take advantage of some weakness created then?

So, if I make any type of alarmist announcement will you follow it just because Leaf confirmed my contact, but not my information? This is all very strange.

Agree. I'd really like to see a follow up on the OP. Slim credentials, no evidence whatsoever, goes directly in panic mode. Coincidentally a similar topic was created on SS forums:

https://forums.submit.shutterstock.com/topic/95629-please-please-read-this-topic-if-you-want-to-protect-your-accounts-and-hard-works-from-hackers/

Is there a way to verify if user Khamkhor is the OP ?

Quote from: SpaceStockFootage on November 02, 2018, 02:22
I've noticed for the past couple of weeks that when I go to the submit.shutterstock.com site the page won't load and it says unsecure site next to the web address. Then, when I refresh the page, it loads and brings up the https version of the address. Not sure if it's related, but had never encountered that before a couple of weeks ago.

Usually that means and expired SSL certificate for that location. Once updated the warning goes away. Otherwise some browsers report sites that are not Https:// s = secure

Not secure doesn't mean it's an untrusted site.

Changed my password which I used on another Microstock site. That's the easiest way for people to gain access, when someone uses the same password on many sites.

I can confirm. I've been hacked and my PayPal account got changed. Earnings have gone. I am waiting an answer from the support, i hope to have my earnings back.