how rude to ask for a password
Results 1 to 9 of 9

Thread: how rude to ask for a password

  1. #1
    Junior Member
    Join Date
    Sep 2005
    Posts
    16

    how rude to ask for a password

    Has anybody heard of this site (http://web.tickle.com) and why they blatantly ask for email addresses and PASSWORDS of there users?



    http://web.tickle.com/dog/ I took a screen shot from this test.
    Time lost will never be found again.

  2. #2
    Macht Nicht Aus moxnix's Avatar
    Join Date
    May 2002
    Location
    Huson Mt.
    Posts
    1,752
    Where do they ask for passwords at? I don't see anything on the link you provided.

    EDIT> ok just saw your screenshot.......I sure wouldn't give them any information like that.
    \"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
    Author Unknown

  3. #3
    AOs Resident Troll
    Join Date
    Nov 2003
    Posts
    3,152
    Never give out you password...

    Just lie...give them false info...see what happens.

    although...... some people will fill that in.....

    MLF
    How people treat you is their karma- how you react is yours-Wayne Dyer

  4. #4
    Super Moderator
    Know-it-All Master Beaver

    Join Date
    Jan 2003
    Posts
    3,914
    Hey Hey,

    This is becoming more and more popular with sites.... some people wrote a few easy to use structures for accessing the internal contents of the popular web-based email systems and it's being abused...

    I have done it on numerous occasions with my hotmail account... I don't use it for anything important and the password is unique...

    Bebo, WAYN, Hi5 are just a few examples that ask you for the account information and your password... They all do different things..

    The example posted above will troll your address book, and in the end give you matches from it's database so you can see your friends results.. you'll tell your friends, they'll do it... and silently in the background tickle is amassing a huge db to sell to spammers, scammers and everyone else..

    With sites like Bebo, WAYN, Hi5... they email all your contacts and invite them to join the site... match you with users already joined and then store the addresses..

    Unfortunately with sites like TrueSwitch which is coming with more and more of the large ISPs these days... people are accustomed to entering their details and think nothing of it...

    Peace,
    HT
    IT Blog: .:Computer Defense:.
    PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

  5. #5
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003
    Greeting's

    The website's IP is in Dshield's attackers list.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  6. #6
    Senior Member Deeboe's Avatar
    Join Date
    Nov 2005
    Posts
    185
    Originally posted here by ByTeWrangler
    Greeting's

    The website's IP is in Dshield's attackers list.
    This is along what I was going to ask. Is it possible that tickle.com was hi-jacked and people are giving their email address and password to someone else? ...unless of course they have been malicious from the start!

    Isn't tickle that same site that does that lame IQ test you always see on the banners?

    -Deeboe
    If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle.
    - Sun Tzu, The Art of War

    http://tazforum.**********.com/

  7. #7
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    I am going to sign the Specialist up for all of them..............and his cardboard box if they want it
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  8. #8
    Junior Member
    Join Date
    Jan 2006
    Posts
    28
    Best way is to use password manager with random password generator for each new site where registration is requid.

    ......Internet is like "Dark Side" traing to take control of you.......
    ......evrething must be double checked.......
    never know

  9. #9
    Banned
    Join Date
    Mar 2002
    Posts
    968

    Talking

    This reminds me of that website claiming to help you "hack" hotmail accounts.

    Just provide that site with the target e-mail account,
    Your e-mail address (to give you the password), and,
    Your password for your hotmail account

    And the sad part is many kiddies believed it would work.

    Add: Here's a link to an example of what I'm talking about http://www.rotteneggs.com/r3/show/se/47617.html
    Also, read the comments on the page for a good chuckle.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides