Results 1 to 18 of 18
  1. #1
    AE-Martyn is offline Former AM
    Join Date
    March 2008
    Location
    Manchester
    Posts
    2,050
    Blog Entries
    3
    Thanks
    637
    Thanked 763 Times in 434 Posts

    Exclamation ** !! Affiliates and Affiliate Managers - BE AWARE !! **

    I recently busted some punk who tried to change payment details on an affiliates account towards the end of last month.

    Please check your accounts or at least be on your guard as this stuff does happen. Usually they will change it on the last day of the month to avoid detection but this was done a few days earlier.

    The details I have for this guy are...

    Neteller
    Huynh Truong Hoang Oanh
    452224455713
    bookie.master@yahoo.com

    He/She also goes by the name of Naotake Izumi and appears to be from Vietnam.

    I emailed this person to "confirm" the account changes and they emailed back, so they are super cheeky...

    "Hi Martyn Beacon,

    Yes, Please update give me!

    Thank you,

    Best Regards,

    XXXXX"


    Keep your passwords secure, change them regularly and don't use the same password for all your logins. It sounds obvious but there are some real scumbags out there.

    Thats all for now.

  2. The Following 17 Users Say Thank You to AE-Martyn For This Useful Post:

    alexpratt (2 June 2011), Anthony-Coral (2 June 2011), baldidiot (2 June 2011), cass (2 June 2011), CCJ (2 June 2011), Chips (2 June 2011), Daera (2 June 2011), danielg (2 June 2011), mojo (2 June 2011), Paolino (2 June 2011), Players Luck - Jamie (2 June 2011), RayUK (2 June 2011), Redbush54 (2 June 2011), slotplayer (2 June 2011), wagerjunction (2 June 2011), Webzcas (2 June 2011)

  3. #2
    Players Luck - Jamie's Avatar
    Players Luck - Jamie is offline Public Member
    Join Date
    July 2009
    Location
    New Zealand
    Posts
    644
    Blog Entries
    2
    Thanks
    119
    Thanked 56 Times in 47 Posts

    Default

    Quote Originally Posted by AE-Martyn View Post
    He/She also goes by the name of Naotake Izumi and appears to be from Vietnam.
    Someone from that email approached me roughly two weeks ago with the same e-mail address asking for link exchange. Dam i deleted his e-mail, i will see what i can do to see if my hosting can pull the email back as it had his website link as well.

    Did they bother updating the site info Martyn? If they did can you post his/her URL

    It may be wise to lodge a ticket with Neteller as well informing they are using their neteller account for fraudulent purposes.
    Jamie Blake
    Skype: wga-jamie


    Best online casinos - Division of Players Luck Gaming

  4. #3
    Chips's Avatar
    Chips is offline Private Member
    Join Date
    October 2007
    Location
    God's Country
    Posts
    3,618
    Thanks
    1,040
    Thanked 1,202 Times in 886 Posts

    Default

    Well done Martyn! Nice catch, it is comforting to know you are watching over us. Now, plan a trip to Nam and chop the pricks fingers off.
    --
    "People who are unable to motivate themselves must be content with mediocrity." ~Andrew Carnegie~

  5. The Following User Says Thank You to Chips For This Useful Post:

    AE-Martyn (2 June 2011)

  6. #4
    CCJ's Avatar
    CCJ
    CCJ is offline Private Member
    Join Date
    March 2002
    Posts
    645
    Thanks
    61
    Thanked 67 Times in 24 Posts

    Default

    Thanks for letting us all know!
    CCJ
    www.casinocashjourney.com

    Like us on Facebook
    Follow us on Twitter

  7. #5
    FictionNet is offline Closed by Request
    Join Date
    December 1969
    Posts
    5,265
    Thanks
    1,437
    Thanked 1,252 Times in 653 Posts

    Default

    Thanks for the heads up. How did they access the affiliate's account? Guess the username and password?

  8. #6
    wagerjunction's Avatar
    wagerjunction is offline Public Member
    Join Date
    January 2004
    Location
    Mauritius
    Posts
    1,570
    Thanks
    279
    Thanked 273 Times in 222 Posts

    Default

    Thanks for the tip Martyn.

    Why can't these try and earn a honest living instead of trying to rip out decent hard working folks. You are absolutely right Chips.. and it's not only the fingers we should plan on chopping off!!!
    Amy
    Affiliate Manager
    WagerJunction | Facebook
    [SIGPIC][/SIGPIC]

  9. #7
    AE-Martyn is offline Former AM
    Join Date
    March 2008
    Location
    Manchester
    Posts
    2,050
    Blog Entries
    3
    Thanks
    637
    Thanked 763 Times in 434 Posts

    Default

    Quote Originally Posted by Players Luck - Jamie View Post
    Did they bother updating the site info Martyn? If they did can you post his/her URL

    It may be wise to lodge a ticket with Neteller as well informing they are using their neteller account for fraudulent purposes.
    No, they did not provide any site info. We have already reported this to Neteller.

    Quote Originally Posted by FictionNet View Post
    Thanks for the heads up. How did they access the affiliate's account? Guess the username and password?
    They used the affiliates login details. From the audit trail, there have been a lot of failed login attempts around the 26th of May until they finally seemed to get the details correct. So they either had an idea of what the password could be, they somehow guessed it (unlikely) or some kind of virus/key logger has been used.

    However, I don't have the answer to that.

    I checked out affiliate database and we dont have an IP registered that matches the IP that tried to access, it could be dynamic? I'll try get it and post it, maybe someone else has them signed up to their program?

  10. #8
    mojo's Avatar
    mojo is offline Private Member
    Join Date
    March 2005
    Posts
    4,985
    Thanks
    1,933
    Thanked 1,883 Times in 1,222 Posts

    Default

    This would be my account that was comprimsed.

    They even wrote Martyn back and signed my name..

    Hi Martyn Beacon,

    Yes, Please update give me!

    Thank you,

    Best Regards,

    Paula
    As far as getting into my account, I'm not sure. One thing I can say was my pw was six numbers. Of course they tell you to use both letters and numbers, so I have been changing all my pw's. I also noticed an old email that they must have gotten notification from Martyn with and promptly deleted that email address.

    Of course I'm concerned that they now have my personal info. I'll be changing a lot of things to protect myself. With all the payment detail changes we are experiencing right now, these things can happen. It may be best to change your pw more often than usual. AM's can be diligent like Martyn was with follow up mails and keep an eye on your email for program detail auto mails.

    With all the stuff going on right now, some scumbag stealing from me is the last thing I need and would probably put me over the edge.

    BUT Martyn donned his superhero cape and used his superhero death ray and sent them off to The Land of No Fingers.

    Thanks Martyn.

    Stay safe everyone!

  11. The Following 2 Users Say Thank You to mojo For This Useful Post:

    AE-Martyn (2 June 2011), Smoking (2 June 2011)

  12. #9
    FictionNet is offline Closed by Request
    Join Date
    December 1969
    Posts
    5,265
    Thanks
    1,437
    Thanked 1,252 Times in 653 Posts

    Default

    Glad it ended up okay and a thumbs up to Martyn for being so professional. It still worries me though - I'd hate this to happen to me.

  13. The Following User Says Thank You to FictionNet For This Useful Post:

    AE-Martyn (2 June 2011)

  14. #10
    Christoff is offline Public Member
    Join Date
    August 2007
    Location
    Dunmow
    Posts
    337
    Thanks
    16
    Thanked 79 Times in 55 Posts

    Default

    I've seen this thing happen quite a bit - and on 2 occasions it was someone from Vietnam.

    Audit Trails in an affiliate programme are vital for AMs to monitor - it can also help an affiliate being paid on time as they may enter a new payment method's details wrongly (it happens a lot).

    Back to the issue - this is why some programmes take 2-3 days to complete 'month end' - this is a part of what is being done

  15. The Following 2 Users Say Thank You to Christoff For This Useful Post:

    AE-Martyn (2 June 2011), Dominique (2 June 2011)

  16. #11
    rak's Avatar
    rak
    rak is offline Former AM
    Join Date
    January 2011
    Location
    Philippines
    Posts
    1,123
    Thanks
    250
    Thanked 334 Times in 258 Posts

    Default

    Quote Originally Posted by Chips View Post
    Well done Martyn! Nice catch, it is comforting to know you are watching over us. Now, plan a trip to Nam and chop the pricks fingers off.
    If Marty is going to Nam, I'm going to. We'd be like the 2 tallest people in the country - most successful basketballs over there. I'd probably get my belly rubbed a lot for some Buddha wishing.

  17. #12
    AE-Martyn is offline Former AM
    Join Date
    March 2008
    Location
    Manchester
    Posts
    2,050
    Blog Entries
    3
    Thanks
    637
    Thanked 763 Times in 434 Posts

    Default

    Quote Originally Posted by rak View Post
    If Marty is going to Nam, I'm going to. We'd be like the 2 tallest people in the country - most successful basketballs over there. I'd probably get my belly rubbed a lot for some Buddha wishing.
    My old boss has a bar there, it might be worth a trip!

  18. #13
    Smoking's Avatar
    Smoking is offline Private Member
    Join Date
    January 2010
    Location
    New York
    Posts
    720
    Thanks
    355
    Thanked 157 Times in 136 Posts

    Default

    Glad all is working out !!

    keep in mind use of strong passwords :
    Strong Password Guidelines

    A strong password:
    has at least 15 characters;
    has uppercase letters;
    has lowercase letters;
    has numbers;
    has symbols, such as ` ! " ? $ ? % ^ & * ( ) _ - + = { [ } ] : ; @ ' ~ # | \ < , > . ? /
    is not like your previous passwords;
    is not your name;
    is not your login;
    is not your friend's name;
    is not your family member's name;
    is not a dictionary word;
    is not a common name.

    hope this helps some1


    Bet Source for Casino Affiliates
    Visit BubbleProtection.com Now
    Post a quality gambling related article in http://www.gamblingshares.com the up and coming Premier Gambling Article Site

  19. The Following User Says Thank You to Smoking For This Useful Post:

    mojo (2 June 2011)

  20. #14
    AE-Martyn is offline Former AM
    Join Date
    March 2008
    Location
    Manchester
    Posts
    2,050
    Blog Entries
    3
    Thanks
    637
    Thanked 763 Times in 434 Posts

    Default

    ... and don't use 'password' as your password!

  21. The Following User Says Thank You to AE-Martyn For This Useful Post:

    Smoking (2 June 2011)

  22. #15
    mojo's Avatar
    mojo is offline Private Member
    Join Date
    March 2005
    Posts
    4,985
    Thanks
    1,933
    Thanked 1,883 Times in 1,222 Posts

    Default

    They also have to get the user id.

    Someone told me once that if you X out instead of clicking the logout link, you are leaving it open and are suseptable.

    Is that true?

  23. #16
    rak's Avatar
    rak
    rak is offline Former AM
    Join Date
    January 2011
    Location
    Philippines
    Posts
    1,123
    Thanks
    250
    Thanked 334 Times in 258 Posts

    Default

    Quote Originally Posted by mojo View Post
    They also have to get the user id.

    Someone told me once that if you X out instead of clicking the logout link, you are leaving it open and are suseptable.

    Is that true?
    If its on a computer that someone else can access. Like a public computer. If I close my browser down, and when I open it back up.. I am logged into GPWA right away without having to enter in my user and pass.

    Logout if you want to keep your accounts secure.

  24. #17
    universal4's Avatar
    universal4 is online now Forum Administrator
    Join Date
    July 2003
    Location
    Courage is being scared to death...and saddling up anyway. John Wayne
    Posts
    28,026
    Thanks
    2,226
    Thanked 7,923 Times in 4,996 Posts

    Default

    Way to go Marty for the catch.

    x'ing out isn't the most secure way to leave a secure page, but it should time out within 20 minutes since that is the default session variable.

    But if you are on a public terminal it is imperative to log oput first, and an overall good practice anyway.

    Smoking listed some great tips for passwords...here is one that goes along with what he said and can help you decide on a password.

    Let's say the password at the bank is banking (very weak and could be cracked in an hour depending on the program)

    But you could easily change it to
    B@nking1 or B@nk1ng

    It covers all the criteria for being strong, at least 1 capital letter, a high ascii character and a number.

    Rick
    Universal4
    Gambling World Online Roulette Online Blackjack Live Online Games Sports Betting Horse Racing
    Casino Affiliate Programs
    Hosting and Domain Names
    Gambling Industry Association
    GPWA Moderation by Me and My Big Bad Security Self
    If an affiliate program is not small affiliate friendly (especially small US Affiliate), then they are NOT Affiliate Friendly!

  25. #18
    xecutable's Avatar
    xecutable is offline Private Member
    Join Date
    March 2011
    Location
    Zurich, Switzerland
    Posts
    1,734
    Thanks
    532
    Thanked 1,034 Times in 592 Posts

    Default

    So this guy hacked 10% of the affiliates on this forum? I mean is it me or this looks more like database leakage than bruteforce password attacks.....
    Gambipedia.com - casino & slot reviews accompanied by casino betting guides

  26. The Following User Says Thank You to xecutable For This Useful Post:

    gaffg (30 June 2012)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •