Good news dari theymos
Hari ini saya sempet membaca di Meta mengenai recover akun dan seperti nya sekarang Admin sudah mulai mau me-recovery akun.
pada tanggal 14 desember kemaren ternyata ada tambahan prosedur mengenai recovery akun selain dari pembuktian sign message,
Admin akan merubah email kembali ke email awal, dengan catatan : akun harus ada di list security log, akan ada pemberitahuan ke email lama yang sebelum nya di gunakan akun tersebut, ikuti instruksinya dan setelah itu tinggal tunggu sampai 7 hari kedepan.
Berikut penjelasan dari theymos
Sudah ada akun yang berhasil di recovery dalam waktu 7 hari :
[solved] Legendary account hacked using password reset via email
Silahkan di coba, Good luck...
Hari ini saya sempet membaca di Meta mengenai recover akun dan seperti nya sekarang Admin sudah mulai mau me-recovery akun.
pada tanggal 14 desember kemaren ternyata ada tambahan prosedur mengenai recovery akun selain dari pembuktian sign message,
Admin akan merubah email kembali ke email awal, dengan catatan : akun harus ada di list security log, akan ada pemberitahuan ke email lama yang sebelum nya di gunakan akun tersebut, ikuti instruksinya dan setelah itu tinggal tunggu sampai 7 hari kedepan.
Berikut penjelasan dari theymos
As an extra protection against any possible social engineering attacks, whenever* the administration changes an account's email address from its current value, the following process occurs:
- The change is queued.
- It is listed in seclog.php.
- The old email receives a warning.
- After 7 days, the change goes through and another seclog.php entry is added.
The account stays locked throughout all of this.
Hopefully it will be essentially unheard of, but if an account is going to be incorrectly transferred, everyone who knows about the incorrect change should noisily post all of the evidence they have so that we can at least put the change on hold and re-review the evidence.
* Admins can act outside of procedure and bypass the queue if necessary, but hardly ever will.
- The change is queued.
- It is listed in seclog.php.
- The old email receives a warning.
- After 7 days, the change goes through and another seclog.php entry is added.
The account stays locked throughout all of this.
Hopefully it will be essentially unheard of, but if an account is going to be incorrectly transferred, everyone who knows about the incorrect change should noisily post all of the evidence they have so that we can at least put the change on hold and re-review the evidence.
* Admins can act outside of procedure and bypass the queue if necessary, but hardly ever will.
Sudah ada akun yang berhasil di recovery dalam waktu 7 hari :
[solved] Legendary account hacked using password reset via email
Silahkan di coba, Good luck...