rebeccaalleney

Just received the notification today: Are there any further information available, such as whether it's just an compilation of existing data breaches or rather a wholly new one? Perhaps Troy Hunt needs to be informed of this as well.

Does Malwarebytes scans the Master Boot Record and so on like critical areas and boot sectors during a Full Scan?

Except the post mentioned "Arizona Department of Public Safety" which unnerved people a bit.

Thanks, but the tool you used is sometimes viewed as entry-level rather than advanced tool anyway. It would be great if the Malwarebytes team can use their advanced tool to perform a comprehensive scan on the website and all its contents.

Someone posted on the /r/RBI subreddit that a forum site Wikipediasucks[dot]co may have been infected with malware and therefore merits investigation by antivirus experts, presumably including the MalwareBytes team: https://old.reddit.com/r/RBI/comments/1934v6z/forum_site_alleged_to_be_infected_by_malwares_or/ wikipediasucks.co/forum/ucp.php?mode=login Full and direct quote in below: A few days ago I was discussing about an internal drama in a forum site which I frequent and as time goes, he made this claim out of the blue: I asked an IT friend to look into it and he told me its a very suspicious site with evidence of phishing and keystroke tracking software as well as cross referencing of password files. Also told me it has less than 400 registered users and only about 5 or 6 people ever post anything. The forum in question is wikipediasucks[dot]co and although the work station I frequently use has the protection of some high quality AV software which would have detected them a long time ago if such a claim are true, not to mention having run it through VT and Hybrid Analysis showing that nothing was terribly amiss, I'm still rather unnerved and so I would be thankful if anyone else, preferably those who had access to better detection tools, can help give a second, maybe a third or even twentieth opinion by performing detection runs on that website, including all contents and URLs belonging to it, with the better tools. More comprehensive means more better. In the meantime I pressed him about the issue who then replied with this: Also, before I forget, the IT specialist who looked at that website isn't really my friend, he's an acquaintance from the Arizona Department of Public Safety. He said he found keystroke tracking software on that site which is normally used by scammers to get passwords who then try and use them on other websites in the hopes the person is using the same password. Kind of outdated scam actually. He also told me me that he made a dummy account and within days had received a "welcome link" which took him to a phishing website. In light of above, the pages that directly deals with passwords in the forum, such as the login page (see below), registration page and the password reset pages, are certainly something to investigate as well. VT and Hybrid Analysis results so far turn up clean. wikipediasucks[dot]co/forum/ucp.php?mode=login