Attention Guest: Please make sure that you are using a unique password to login to MESO. If you have used your MESO password on another website, change it immediately. You should NEVER share the same login credentials on multiple websites.

Dragon Ordnance

Discussion in 'Steroid Underground' started by DragonOrdnance, Dec 8, 2018.

  1. puckhog

    puckhog Member AnabolicLab.com Supporter

    Damn. If Ironvet got hacked, maybe we are all hacked!
     
  2. [THIS ACCOUNT HAS BEEN COMPROMISED BY A THIRD-PARTY. IT HAS BEEN TEMPORARILY SUSPENDED.]

    Yeah, you're all hacked. But I won't do anything with it if PurplePandaLabs pays 0.5BTC.

    If not, yeah, emails have been dumped a while back. Other shops paid 2500$ or 5000$. Not a single user was hacked nor information leaked. They choose to lie to you all and now they're paying.
     
  3. puckhog

    puckhog Member AnabolicLab.com Supporter

    Well fuck you you low life piece of shit.
     
    B Ware and MisterSuperGod like this.
  4. Thegreek

    Thegreek Member AnabolicLab.com Supporter

    [THIS ACCOUNT HAS BEEN COMPROMISED BY A THIRD-PARTY. IT HAS BEEN TEMPORARILY SUSPENDED.]

    I'm a criminal. Yes. But I keep my word and I tried to get everything solved without doing any of this shit.

    Also, read his posts and those of PurplePanda. They lied to all of you, took no ownership of their mistakes, and now they and their customers are paying for it. I make no excuses for myself but they should be ashamed of the service they provide.
     
  5. janoshik

    janoshik Member

    Hey man, can you write something cool under my name?

    (Like I'm secretly gay or something.)
     
    wheyter likes this.
  6. That's about as good as it gets. :D

    On a serious note, this is another feather in the cap for those that complain of sources using websites to sell their goods.

    As we can see, Johnny Scumbag there has shown us all how source websites can come back and bite users in the ass.
     
    wheyter, Kim and Mac11wildcat like this.
  7. janoshik

    janoshik Member

    You know you can always count on me being gay for ya.

    upload_2019-9-9_18-12-15.png
     
  8. DragonOrdnance

    DragonOrdnance Member AnabolicLab.com Supporter

    Hey boys as you've heard shit went down quickly but as panda said in his thread, we brought a security breach analyst into our fold and said we had nothing to worry about. a SQL injection vulnerability on our site for all these years would've resulted in tons of data breaches, so thats impossible.

    Most of these passwords and emails are a result of other accounts on BoP and whatever other steroid forum was mentioned in Baker's thread.

    I highly urge anyone who has an account on these sites to change them on mine. With that said, it is business as usual here.
     
  9. T-Bagger

    T-Bagger Member

    Most but not all. So for those who aren’t even on BoP and who got hacked on here, please explain.
     
    DragonOrdnance and Kim like this.
  10. Yeah, i'm perplexed. Both PPL and DO say they weren't hacked and not everyone that was compromised visits BoP.

    There has to be a common denominator in all of this, but i'm not seeing it yet.

    ( i think it was @WeMadeItToAndromeda ) said that the hacker posted personal information in DO's thread. By the time i got there, Millard had already removed it.

    What exactly was that personal information? Just some emails from a hacked account or customer information from one of the two sites?
     
    Kim likes this.
  11. T-Bagger

    T-Bagger Member

    Actual names and addresses, not just email addresses.
     
  12. This. I happened to be looking at DO's thread when I got an alert that someone had replied to it. I went to see what it was and saw that the hacker and said "Karma is a Bitch" and then posted a pastebin with people's addresses, names and email addresses. I immediately tagged Millard, who deleted the information.
     
    Cityofgrit, MisterSuperGod and Kim like this.
  13. Masterofron

    Masterofron Member AnabolicLab.com Supporter

    Well I mean, that’s what happens when you make an account on a website. Your information stays there until you delete your account lol. Everyone who had their name on that list should have been aware of that fact prior to ordering. I mean, do you think these guys delete users accounts? No, you signed up for an account, and your info stays in their database until it’s either deleted or you email them and request it to be deleted.

    Imagine going to make an order and you see “account does not exist/wrong information”. It’s not logical at all for them to delete user accounts. If you care about your information being deleted once your order has arrived, you either need to order via email, or order and make sure your information is deleted afterwards.
     
    Last edited: Sep 10, 2019
  14. DyelAF

    DyelAF Junior Member

    Did anyone save this list? Man I’d feel a lot better knowing I wasn’t on it...

    So if it’s just names, addresses, and emails... that’s just your user account info. Nothing tying the names to actual orders?
     
    Jwole33 likes this.
  15. T-Bagger

    T-Bagger Member

    My guess would be those were sources that were posted, but it was in a pastebin and I’m sure af not visiting that site to copy it.
     
    Kim likes this.
  16. Masterofron

    Masterofron Member AnabolicLab.com Supporter

    The list was posted by the scammer/extortionist as a scare tactic for the source. You guys aren’t special, nobody is coming after your individual personal information.


    Watch, I’m wrong and you all get emails saying “I’ll tell all of your moms your on gear unless you pay me .5 BTC!” :D:D
     
  17. Jokes on you bruv. My mom knows I'm on gear!
     
  18. Breakneck

    Breakneck Member

    I cannot log into my DO account.

    Now I know something is up because my pw was saved.

    I've entered it manually and it does not take my pw.
     
  19. DragonOrdnance

    DragonOrdnance Member AnabolicLab.com Supporter

    We do an annual wipe of all accounts every year, which so happened to be this July. All customers also have a button which says "delete account" on their account page if they so wish, wiping all the data.

    I can't really comment on it as I just don't know. We brought a security breach analyst a month ago when it this happened in August, who told us our site is safe from entry level attacks such as an SQL injection. There are zero traces of anything obtained from our website. As many as you know, panda and I share the same developer, so for the "hacker" to obtain more data from mine but less from his is nonsense. But the fact does stand, nothing was obtained here, and BoP was taken down, with the other forums mentioned.

    If you want to speak to my security breach guy in more technical details, I can point you in his direction if you have discord.
     
    WeMadeItToAndromeda and T-Bagger like this.
  20. Masterofron

    Masterofron Member AnabolicLab.com Supporter

    Thank you, this was basically exactly what my point was. I don’t see anything wrong with it. I know you have stated from the beginning that customers are able to delete their accounts/information themselves with a click of a button, but people don’t ever read, instead they just order and then complain later if something happens.
     
    Big_paul likes this.