Menu
News
All News
Dungeons & Dragons
Level Up: Advanced 5th Edition
Pathfinder
Starfinder
Warhammer
2d20 System
Year Zero Engine
Industry News
Reviews
Dragon Reflections
White Dwarf Reflections
Columns
Weekly Digests
Weekly News Digest
Freebies, Sales & Bundles
RPG Print News
RPG Crowdfunding News
Game Content
ENterplanetary DimENsions
Mythological Figures
Opinion
Worlds of Design
Peregrine's Nest
RPG Evolution
Other Columns
From the Freelancing Frontline
Monster ENcyclopedia
WotC/TSR Alumni Look Back
4 Hours w/RSD (Ryan Dancey)
The Road to 3E (Jonathan Tweet)
Greenwood's Realms (Ed Greenwood)
Drawmij's TSR (Jim Ward)
Community
Forums & Topics
Forum List
Latest Posts
Forum list
*Dungeons & Dragons
Level Up: Advanced 5th Edition
D&D Older Editions
*TTRPGs General
*Pathfinder & Starfinder
EN Publishing
*Geek Talk & Media
Search forums
Chat/Discord
Resources
Wiki
Pages
Latest activity
Media
New media
New comments
Search media
Downloads
Latest reviews
Search resources
EN Publishing
Store
EN5ider
Adventures in ZEITGEIST
Awfully Cheerful Engine
What's OLD is NEW
Judge Dredd & The Worlds Of 2000AD
War of the Burning Sky
Level Up: Advanced 5E
Events & Releases
Upcoming Events
Private Events
Featured Events
Socials!
EN Publishing
Twitter
BlueSky
Facebook
Instagram
EN World
BlueSky
YouTube
Facebook
Twitter
Twitch
Podcast
Features
Top 5 RPGs Compiled Charts 2004-Present
Adventure Game Industry Market Research Summary (RPGs) V1.0
Ryan Dancey: Acquiring TSR
Q&A With Gary Gygax
D&D Rules FAQs
TSR, WotC, & Paizo: A Comparative History
D&D Pronunciation Guide
Million Dollar TTRPG Kickstarters
Tabletop RPG Podcast Hall of Fame
Eric Noah's Unofficial D&D 3rd Edition News
D&D in the Mainstream
D&D & RPG History
About Morrus
Log in
Register
What's new
Search
Search
Search titles only
By:
Forums & Topics
Forum List
Latest Posts
Forum list
*Dungeons & Dragons
Level Up: Advanced 5th Edition
D&D Older Editions
*TTRPGs General
*Pathfinder & Starfinder
EN Publishing
*Geek Talk & Media
Search forums
Chat/Discord
Menu
Log in
Register
Install the app
Install
Community
General Tabletop Discussion
*TTRPGs General
DriveThruRPG.com Security issue.
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="C. Baize" data-source="post: 1797396" data-attributes="member: 4571"><p>So. I surfed over to DriveThruRPG to see what it looked like and everything... </p><p>First time there.. I'm looking around a bit, and then something catches my eye... </p><p>It says, "<em>Welcome back to DriveThruRPG.com, Nathaniel! May I tell you about the new products that we have added to our menu?</em></p><p><em>If you have the most recent version of Adobe Reader, you can click here to activate your DRM account.</em>"</p><p>You may have noted that I said it was my first time there, and then DTRPG tells me "Welcome back" and calls me by name .... err... Not by <strong><em><u>MY</u></em></strong> name, though... So, I'm curious... I hit the "My Account" button.... Lo and behold... I'm logged in as this Nathaniel guy. I can see his home address and phone number (nice one, Nathaniel! <img src="https://cdn.jsdelivr.net/joypixels/assets/8.0/png/unicode/64/1f642.png" class="smilie smilie--emoji" loading="lazy" width="64" height="64" alt=":)" title="Smile :)" data-smilie="1"data-shortname=":)" /> ) along with his e-mail address. </p><p>I e-mailed Nathaniel and apprised him of the situation, and then I used the "Contact Us" feature at DTRPG and apprised them of the situation... </p><p>I know these aren't instant fixes, however, and felt I should make people aware of the security issue found there. </p><p>I might be able to see a mistake like that if there were some sort of cookie on my computer from having visited there, before, OR if we shared an ISP that used rotating IP addresses... We're all the way across the country from each other, using different ISPs.... </p><p>Anyway... to anyone who uses DTRPG, be aware of the situation.</p></blockquote><p></p>
[QUOTE="C. Baize, post: 1797396, member: 4571"] So. I surfed over to DriveThruRPG to see what it looked like and everything... First time there.. I'm looking around a bit, and then something catches my eye... It says, "[i]Welcome back to DriveThruRPG.com, Nathaniel! May I tell you about the new products that we have added to our menu? If you have the most recent version of Adobe Reader, you can click here to activate your DRM account.[/i]" You may have noted that I said it was my first time there, and then DTRPG tells me "Welcome back" and calls me by name .... err... Not by [b][i][u]MY[/u][/i][/b][i][u][/u][/i][u][/u] name, though... So, I'm curious... I hit the "My Account" button.... Lo and behold... I'm logged in as this Nathaniel guy. I can see his home address and phone number (nice one, Nathaniel! :) ) along with his e-mail address. I e-mailed Nathaniel and apprised him of the situation, and then I used the "Contact Us" feature at DTRPG and apprised them of the situation... I know these aren't instant fixes, however, and felt I should make people aware of the security issue found there. I might be able to see a mistake like that if there were some sort of cookie on my computer from having visited there, before, OR if we shared an ISP that used rotating IP addresses... We're all the way across the country from each other, using different ISPs.... Anyway... to anyone who uses DTRPG, be aware of the situation. [/QUOTE]
Insert quotes…
Verification
Post reply
Community
General Tabletop Discussion
*TTRPGs General
DriveThruRPG.com Security issue.
Top
