Password for Hibspass compromised

[Irish_Steve]

Hi all

My son just got a notification to his iPad that his Hibspass password (his client number basically) had appeared in a data leak and was compromised. Now, I dont know if this is some kind of phishing attempt but has anyone else received the same?

Not quite sure what damage it could do but I have told him not to do anything until I speak to the club

[Just Alf]

This quote is hidden because you are ignoring this member. Show Quote

Hi all

My son just got a notification to his iPad that his Hibspass password (his client number basically) had appeared in a data leak and was compromised. Now, I dont know if this is some kind of phishing attempt but has anyone else received the same?

Not quite sure what damage it could do but I have told him not to do anything until I speak to the club

Since setting it up I've not really paid much attention but if it's possible I'd simply go log on and change the password. Job done. (Don't use any link in the èmail )



Sent from my SM-G935F using Tapatalk

[Ryan91]

This quote is hidden because you are ignoring this member. Show Quote

Since setting it up I've not really paid much attention but if it's possible I'd simply go log on and change the password. Job done. (Don't use any link in the èmail )



Sent from my SM-G935F using Tapatalk

Don't think your HibsPass login can be changed, sites a walled garden though, and as far as I am aware no information is stored on a HibsPass account other than your name and client ref.

[hibee]

It’s just a standard warning from Apple, someone somewhere in the world has used the same password for something else and it’s been leaked online so they advise you to change it.

It doesn’t mean the specific user id and password has been leaked anywhere.

[Irish_Steve]

Cheers for the replies, the club say they definitely didn’t send anything out and I know nothing else is linked to my son’s account as I pay for the season tickets on my account

[JeMeSouviens]

This quote is hidden because you are ignoring this member. Show Quote

Cheers for the replies, the club say they definitely didn’t send anything out and I know nothing else is linked to my son’s account as I pay for the season tickets on my account

If it's a password he thinks is unique to him and he uses it elsewhere then you should get him to change it everywhere, because it's been involved in a leak somewhere. There have been a few cases of account name/password databases being hacked and the details sold on.

[nonshinyfinish]

This quote is hidden because you are ignoring this member. Show Quote

If it's a password he thinks is unique to him and he uses it elsewhere then you should get him to change it everywhere, because it's been involved in a leak somewhere. There have been a few cases of account name/password databases being hacked and the details sold on.

This is good advice generally, but I think in this case the Hibs Pass password is always your client ref (and can't be changed?), so it's unlikely he's used it elsewhere.

Of course if he has used his client ref as a password elsewhere he should definitely change it, not to mention start using stronger passwords…

[Irish_Steve]

Again thanks for all the advice, he doesn’t use his client number as a password anywhere else

[660]

I think Apple source this data from haveibeenpwned.com. They often purely store compromised passwords so if anyone anywhere had used the 5 digits as a password and it has shown on the website, Apple will show the warning.

I would say it’s not worth worrying about to be honest.