If your ever bought anything from Gearbest then read this.

Redbrickman

Printer Master
Joined
Dec 27, 2010
Messages
1,102
Reaction score
1,184
Points
293
Location
UK
Printer Model
MB5150
I know some of you guys have bought from Gearbest so a head's up...
If you have an account there you might want to think about changing passwords and probably removing any card details you have stored there.

An article on how easy it was to access Gearbest's databases...

vpnMentor can exclusively reveal that Gearbest’s database is completely unsecured – as are those belonging to its sister companies.

https://www.vpnmentor.com/blog/gearbest-hack/
 

Nifty

Printer VIP
Administrator
Joined
Nov 3, 2004
Messages
3,046
Reaction score
1,405
Points
337
Location
Bay Area CA
Printer Model
CR-10, i560 ,MFC-7440N
I just looked in my account and I gladly have a unique password (which I reset) as well as no credit card stored (I pay with Paypal).

Thanks!
 

The Hat

Printer VIP
Platinum Printer Member
Joined
Jan 18, 2010
Messages
15,618
Reaction score
8,691
Points
453
Location
Residing in Wicklow Ireland
Printer Model
Canon/3D, CR-10, CR-10S, KP-3
I find it ironic but logging into Gearbest after we know they have been comprised is a little bit senseless, because if they haven’t got your Email and or other details up to now, you’re only adding to their database by doing so, if the hack is still active.

I only had a guest account and password and paid by PayPal, so I’m not bothered, and I won’t be using their site again, they’re after sales and support care is poor to non-existent, so if they have been hacked, it’s not surprising...
Thanks for the heads up @Redbrickman...:thumbsup
 

The Hat

Printer VIP
Platinum Printer Member
Joined
Jan 18, 2010
Messages
15,618
Reaction score
8,691
Points
453
Location
Residing in Wicklow Ireland
Printer Model
Canon/3D, CR-10, CR-10S, KP-3
I wanted to take this a bit further, (Curiosity) so I logged into Gearbest website later on Friday using my guest account but despite having used the self-generated pass word I was given, they also wanted me to click on an Email they had just sent me to verify that my credentials were correct.

That may sound very plausible but having received the cautionary notice from @Redbrickman I didn’t go any further, but later that morning I got another Email wanting me to proceed and subscribe to activate my account again to receive bonus points. (Un-Wanted Spam)

This Email makes for interesting reading, I ask are they credible company, I don’t reckon so...

1.jpg


Gearbest should have Emailed all their customers and informed them of this attack and advise their customers to change their details, but did they.... ? ? ? they are not following EU regulations either and they should be...
They did however try to cover their ass with: By pressing subscribe...
 

Latest posts

Top