There was a blog that chemthan got hacked, and indeed I got strange messages from his account, asking for help with problems from the next Google Kickstart. The blog is now deleted. It would be nice to hear from some friends of his whether everything is ok now. chemthan1 is allegedly his temporary alt account. Also, ikatanic was mentioned.
I can remove this blog a few days after everything is resolved, if chemthan wishes so.
but how one can get kickstart problems , before the round unless he / she is the organizer of the round ?
ohno, chemthan hacked the real problemsetters, stole the problems and now is desperately trying to cover it by all this drama
Actually, what Vovuh shared with me from him seems to be just practice round problems and a request to stay online during the actual round lol.
Do you have any evident? I do not think he were this bad cause he is a respected person in our community.
r/whoosh
Yes, but he regained access to his account.
chemthan requested to disable his temporary alt, therefore the blog is removed.
Source: I am his friend (trust me reds tell no lie).
We still don't know who hacked him yet, but it is likely that they are not Vietnamese, as we all got PMs in English.
Also chemthan when you see it pls accept my FB friend request :(
-_-
haha , so contradictory
Friends in real life doesn't mean they are friends on social network
ikatanic told me he was hacked, so I guess probably so was chemthan.
yes, it seems the organization successfully hacked cf, but don't worry, the mad sp Hououin Riela will protect cf
Moriarty Organisation
Moriarty is just a pawn on a bigger scheme.
Yes, what MofK wrote above is true.. The hacker was caught because they refused to write in Vietnamese as I advised :(
chemthan, ikatanic, what passwords did you use? Were they too easy? What was their length?
I think this one is on me. Codeforces was the only website I still used some old easy password for. I also used to have it on few other websites. It was possibly recovered during one of massive password leaks that happened in last few years.
I did start using a password manager and long random passwords since then, but I always thought Codeforces was using login by Google, and that there was no password. Turns out it's not really true :).
The dangers of not remembering passwords everywhere: you don't remember where you have a weak password.
I think it's rather the problem of using passwords leaked by a security incident. Maybe Errichto can PR for 1Password as he did for Grammarly?
xd
I forgot to put my affiliate link there. Here you go: link.
It is so silly that I even gave chemthan my discord nickname and I thought that I was chatting with ikatanic there :(.
Why CF doesn't use https ? One can easily steal any password with MITM attack.
CF uses HTTPS, or at least that's what I see in the address bar.
Yes, almost for a year already
Looks like CF supports both. I think it should divert to https if someone use http. In fact I was using http so far :) (Image shows 'Not Secure' in address bar)
You could (and should!) activate "Enforce https" checkbox here: https://codeforces.net/settings/general
Or use the HTTPS Everywhere extension.
Thank you !! Was not aware of this.
chemthan1 has contribution of +49 without blog posts and comments. Is it possible?
yes
Yes, it is. One can post a blog, get that blog upvoted, than delete it.
Maybe, vepifanov is also hacked. I and my friend maroonrk received strange messages from 'his' account and asked us to help an very easy contest that you can solve in ten minutes.
Please be careful. Even redcoders may send you spams. It's also possible that my account will send such talks. But don't believe them. I can prepare easy problems alone, though my English is broken too.
One thing for sure we know is that hacker is not from Google, but would like to work there (hence wants to shine on their competition Kickstart). Does this narrow down things a little?
We can probably further narrow things down to a specific country/region if more messages pop up. One thing I've noticed after being on CF is that English speakers in different countries will sometimes word phrases differently in a way that only other speakers from the same country will. For example, I've seen a lot of Indians say that they "give a contest" or "give contest" rather than saying that they participated or took part in a contest. Things like that are typically good give away's of what country someone is from.
Wow Sherlock
What if we ask Mike for his IP and other data, and then send it to Google Kickstart support?
Here it goes again